Corma

You can now configure multi-step approval flows tailored to your internal ownership structure, bringing clarity, control, and accountability to every access request.

• App-Specific Approvers: Assign a default access management owner for your entire organisation, or define approvers at the individual app level for more precise control.

• Flexible Workflow Design: Add as many approval steps as needed, and assign individuals, roles, or dynamic fields (such as the requester's manager) at each stage.

• Automated Provisioning: Once all approvals are collected, provisioning can be triggered automatically with Corma.

We have launched a fully dedicated Shadow IT page to help you detect and resolve risks on unsanctioned apps.

• Clearer Risk Insights: Instantly see newly detected apps, recent activity, and associated risk levels across your organization.

• Active Browser Extension Coverage: Monitor browser extension adoption to ensure full visibility into your app landscape.

• Third-Party Token Inventory: Review all third-party tokens granted by users, including scope, app status, and permission source. Tokens can be revoked directly from the interface.

• Smart Filters: Use advanced filters to quickly drill down by app, user, permission type, or source.

Our Notion integration now supports automated provisioning and deprovisioning of Notion licenses directly through Corma. Whether you are onboarding new team members or revoking access during offboarding, Corma ensures that the right users have access to Notion—at the right time.

⚠️ This integration is only available for customers on Notion’s Enterprise plan.

Our new Modjo integration allows seamless collection and synchronization of licenses into Corma. Whether you’re provisioning new Modjo licenses for incoming team members or deprovisioning them for offboarding, it all happens effortlessly through Corma. By centralizing these tasks in one place, you maintain an up-to-date view of your Modjo environment, reduce administrative overhead, and ensure that only the right people have the right access at the right time.

We have revamped the Users page to give you a clearer, more structured view of every user’s identity provider (IDP) and HR status.

• Split & Expanded Statuses: HR and IDP statuses are now displayed independently, and we have introduced new status values such as Suspended (IDP) and Upcoming (HR).

• More Granular Filters: You can now filter and sort users by specific HR or IDP statuses to quickly identify offboarded users, upcoming hires, or provisioning mismatches.

• Contextual Alerts: Instantly spot users with conflicting or unexpected states (e.g., Active in IDP but Terminated in HR).

• Improved Usability: Cleaner design, contextual tooltips, and additional filters help you manage user access with greater confidence and speed.

We have improved the logic behind Corma’s browser extension to make usage alerts more relevant and actionable for your team.

• Smarter App Detection: Our new logic significantly reduces false positives and false negatives when detecting apps, improving the precision of Shadow IT alerts.

• Improved Notification Design: Users now see clearer, contextual messages when accessing apps that are unauthorized or not yet reviewed, helping guide better behavior in real-time.

• Request Access Flows: For apps not yet categorized, users can now directly request access from the browser extension, creating a smoother workflow between employees and IT.

• Visual Enhancements: Refined layout and iconography for better readability and user experience.

We have rolled out a series of enhancements and fixes to to ensure a smoother experience:

• App Speed Optimizations: Significant improvements have been made to overall navigation speed and responsiveness.

• Microsoft HR Fields Sync: Microsoft HR fields are now synchronized to improve employee data mapping.

• Split HR Sync Capacity: User data synchronisation now supports dual capacities—user identity and HR source—providing greater flexibility.

• Adobe de(provisioning): Adobe provisioning and deprovisioning are now available via their User Management API.

Corma now supports automatic group assignment for Google and Microsoft during onboarding. New joiners are added to the right groups directly within Corma, streamlining setup and reducing manual work for IT and admin teams.

⚠️ To enable this feature, you will need to disconnect and reconnect your Google or Microsoft integration to grant the necessary permissions.

With the new Agicap integration, all app-related expenses from your Agicap account are automatically synced into Corma. Keep a unified view of transactions and streamline reconciliation between financial data and application usage. Corma only has access to your supplier invoices, so the rest of your financial data stays on Agicap!

We have rolled out a series of enhancements and fixes to to ensure a smoother experience:

• Contract Document Upload: You can now upload contract documents directly from the contract management section of each application.

• AI-Powered Contract Extraction: Contract details are now automatically extracted using AI.

• Sub-pages & Notification Fixes: Resolved various bugs affecting sub-page loading, sidebar behavior, and in-app notifications.

• License auto-provisioning during access requests: Once approvals are complete, licenses can now be provisioned automatically during the access request flow.

Our new Dashlane integration allows seamless collection and synchronization of licenses into Corma. Whether you’re provisioning new Dashlane licenses for incoming team members or deprovisioning them for offboarding, it all happens effortlessly through Corma. By centralizing these tasks in one place, you maintain an up-to-date view of your Dashlane environment, reduce administrative overhead, and ensure that only the right people have the right access at the right time.

We have significantly enhanced the contract management experience to give you more control and clarity over your software expenses. 

• New Fields & Notifications: You can now set custom start dates, notice dates, and renewal dates for each contract. Corma will automatically send Slack and email reminders to the designated contract owner one week before each selected date.

• Expanded Owner Roles: We have introduced three distinct owner roles—App Owner, Contract Owner, and Access Management Owner—allowing you to delegate responsibilities more precisely across your team.

• Richer Contract Details: Each contract now includes total cost, currency, payment method, and contract type. All fields are declarative and help standardize your vendor documentation.

• Invoice & Expense Management: You can now download invoice files directly from the interface, update expenses, and remap any incorrectly tagged invoices to the correct application.

• Bulk Actions: Perform bulk operations such as remapping multiple expenses, exporting contract data to CSV, or mass-deleting outdated records—directly from the contract table.

Company members can now submit access requests directly within Slack using a structured request form. This new workflow allows users to select the app, license type, date needed, and an optional reason—all without leaving Slack.

Our new Adobe integration allows you to seamlessly collect and list all Adobe licenses within Corma. In addition, you can now discover third-party applications connected to your Adobe environment via SSO and collect their associated licenses. This gives you a unified and up-to-date view of your Adobe environment and all associated applications, helping you manage access more efficiently.

We’ve addressed several issues and made performance enhancements to ensure a smoother experience:

• Microsoft Last Activity Collection: Enhanced the cron job for more consistent updates of user activity data.

• Open Tickets Reminders: Improved Slack notifications to ensure timely reminders for open request tickets.

• Sidebar Refactor: Refactored the sidebar for better performance and smoother navigation.

We’re excited to introduce Sub-page Analytics, a powerful new addition to Corma’s analytics suite that gives you unprecedented visibility into how your team interacts with applications.

• See the Most Visited Sub-pages: Go beyond app-level analytics to see exactly which subpages are being used. This helps you pinpoint where your teams spend their time, and which features drive the most value.

• Understand Usage Patterns: Drill down to view activity for individual users or across your entire organization. Track how many unique users access each subpage, total visits in the past month, and the last time each page was accessed.

Our new Asana integration allows you to list and monitor licenses and track the last activity directly within Corma. This feature streamlines the management of your Asana environment, ensuring that you have a clear and up-to-date view of your licenses and user activities. By centralizing these tasks, you can reduce administrative overhead and maintain a secure and organized Asana setup.

We’ve addressed several issues and made performance enhancements to ensure a smoother experience:

• HubSpot Last Activity Collection: Improved reliability in collecting and displaying the latest activity data from HubSpot.

• BambooHR, Payfit, and June Analytics: Fixed integration issues to ensure accurate data syncing across these platforms.

• Notion Webhooks: Added support for webhooks to collect last activity data from Notion.

We are pleased to announce an important enhancement to the Licenses Page: the addition of the new Match and All tabs, designed to help you further optimize SaaS spend and reduce cyber risks on your tools.

• The Match tab highlights provisioned licenses from your direct integrations that could not be matched to any user in your organization’s Identity Provider (Google, Microsoft, or Okta). This typically reveals licenses still assigned to users who have left the company, external collaborators, or accounts registered with personal instead of professional emails. By catching these mismatches, you can quickly identify unnecessary expenses and strengthen your organization’s security posture.

• The All tab provides a holistic view of all synchronized licenses from connected sources and the extension, making it effortless to review your complete license landscape at a glance.

We are introducing major upgrades to the On & Offboarding experience in Corma—designed for easier, error-proof provisioning and deprovisioning.

• Unified Provisioning Dashboard: See all onboardings and offboardings at a glance. Everything is now organised by Suggested, Ongoing, and Completed, giving you instant clarity into where every process stands.

• Track Progress in Real Time: Monitor ongoing onboardings and offboardings, with detailed status for every task—know exactly which steps are done, and which remain.

• Automated & Manual Task Management: For each onboarding or offboarding, easily review which accounts Corma will create or deactivate automatically.

• Complete Audit Trail: Every action for every user is logged and detailed on the Completed page.

Access requests are now fully centralised and more actionable. Instantly track, approve, and prioritise all access requests and removal tickets—across your entire organisation, your own apps, or just your requests.

• Personalised Queues: Quickly action items relevant to you, with three intelligent filters:

  • To Approve: Requests awaiting your approval as an app owner.

  • All Requests: Full organisational view of every access request and removal.

  • Your Requests: Instantly check the status of your own outstanding requests.

• Granular Filtering & Insights: Dig deeper using filters by Approver, Tags, Priority, and Apps—empowering you to triage and act on what matters most.