1. Introduction
This document provides information on the features, improvements, and known issues for this Neeve release. The Neeve Portal is currently in Beta stage. It may be missing features or have small bugs. We are targeting monthly releases to continue improving the product experience and adding new functionality.
Neeve Portal 1.5 for Multi-Tenant environments adds full OIDC identity provider support, expands audit and access log capabilities with date filtering and CSV export, and delivers improvements across SSO management, the Launcher, portal UI, and more.
2. Changes in this release (Neeve Portal v1.5)
This release is only for our multi-tenant architecture. Not all portals will be upgraded to this release at this time.
2.1 New Features
OIDC Single Sign-On (SSO)
Full OIDC Support: Connect to any OpenID Connect (OIDC) identity provider via Settings > SSO.
Configuration: Enter your Discover URL, Client ID, Client Secret, and email domains for routing. The portal validates discovery metadata in real time and prevents duplicate connections.
Test Connection for Entra OIDC: Verify your Entra (Azure AD) setup before enabling it. The test runs through the full redirect and token-exchange flow and returns a clear pass or fail result.
SAML Single Sign-On (SSO)
Test Connection: Validate your SAML identity provider end-to-end before it goes live. The test verifies metadata exchange and assertion flows. The Enable button remains unavailable until the test passes to prevent user lockouts from misconfigurations.
Logs & Audit
Audit Logs: Added date range filtering and CSV export capabilities. The log now captures expanded events including SSO provider changes (create, disable, delete), branding and hierarchy changes (portfolios, sites, nodes, endpoints), and SSO user activity.
Access Logs: Added date range filtering and CSV export capabilities. Selecting a range with no results produces an empty file rather than the full dataset.
Launcher
Endpoint Listing: The Launcher page now lists available endpoints directly, allowing connections without navigating away.
2.2 Enhancements
SSO & User Management
OIDC Improvements:
The Discover URL field can be edited at any time post-creation.
Users from all domains associated with an OIDC connection can log in, regardless of how many domains are mapped.
Updating the Client ID/Secret applies immediately to the IdP without manual resyncs.
Added a loading state to the Save button on the OIDC configuration form.
SAML Improvements:
Updated metadata parser clearly identifies expired certificates and malformed metadata during both file upload and URL imports.
The Metadata URL field features a descriptive placeholder and inline guidance.
Connections in a Disabled or Saved Draft state can be enabled or re-saved without errors, and editing a Disabled SAML connection now properly retains its disabled state.
SSO User Recovery: Send reinvites directly from a user's profile if their SSO provider is removed or disabled. Users receive an email to set a password and regain access.
UI / Portal Experience
Mobile Responsiveness: The Manage Users L2 page, Toast notifications, Tile cards, Dialogs, and the Node Onboarding screen now render correctly on mobile and tablet viewports (375px, 414px, and 768px).
Branding & Routing:
Portal login pages and outbound emails (invitations, password resets) correctly reflect custom organisation branding configurations.
Tenant-specific URLs route users correctly; unknown subdomains accurately return a 404 page.
Launcher: Added a loading indicator while fetching additional tiles during scrolling.
Table Behavior: The freeze column in the Manage > Networks table now remains securely fixed during horizontal scrolling.
Node Onboarding: The Site field is now strictly required. Submitting the form without a site selection triggers a validation error, ensuring proper node-to-site association.
Data Exports: Timestamps in CSV exports now correctly match UI values and apply the proper timezone, including exports spanning midnight UTC.
2.3 Bug Fixes
User & Access Management
Fixed an issue where users onboarded through domain-match SSO could not be successfully disabled from the portal. Subsequent login attempts are now properly blocked.
Fixed an Access Denied error that occurred when users with parent portfolio access attempted to view and connect to devices.
UI / Portal Issues
Fixed an issue where endpoint statuses failed to update correctly after switching a cloud connector.
Fixed browser console errors triggered when creating SSH or RDP connections in Discover Endpoints.
Fixed the Support > Online Help Docs link so it correctly opens the Neeve Portal documentation.
Performance & Reliability
Resolved intermittent HTTP 503 errors occurring when creating users, nodes, and other assets under concurrent load.
Fixed file upload stability from the portal; large files (tested up to 86 MB) now complete successfully.
3. Prerequisites
3.1 Cloud Requirements
The following cloud platforms are supported:
Amazon AWS
Microsoft Azure
VMware vSphere v6.x
Google Cloud
3.1.1 Cloud Connector Compute Requirements
2 vCPU
2GB RAM
10GB HDD
Public IP address
4. Issues
4.1 Known Limitations
The following limitations exist within the Neeve portal. Due to the beta nature of the Neeve Portal, not all features are available.
Audit Logs (Display Only): The SSO connection name in audit entries may include an internal identifier suffix. All event data is captured correctly; this is a display-only issue.
Branding Display: Organisations with legacy branding configured prior to Release 1.5 may see their previous logo until branding is re-saved via Settings > Branding.
OIDC Wizard: The Next button in the OIDC configuration wizard saves the current step as part of the flow. This is expected behaviour.
Cloud BMS-enabled portals cannot be deactivated.
Privilege escalation does not trigger email notifications.
UI does not auto-refresh after configuration changes.
Bulk onboarding toast messages may overwhelm the UI.
Multi-org logout must be handled manually.
User hierarchy visibility limitations exist across orgs/sites/portfolios.
Launcher favorites reorder behavior may appear inconsistent.
Secure Edge and Neeve Portal configuration conflicts may overwrite changes.
Some onboarding diagrams do not reflect all hardware form factors.
CSV export is limited to 1000 entries.