The Product Updates page has been redesigned with a fresh modern look, dark mode support, improved search and filtering, and a new Product Replay experience that lets you quickly catch up on recent changes by timeframe and product area.
The Google integration now ingests Gemini in Workspace activity, giving visibility into how users exercise Gemini across Workspace apps — no new permissions required.
Admins can choose what time of day task reminders and escalations are sent to their org.
You can now hide multiple applications at once using the bulk actions menu on the Applications page. In the application field State, you can now select a new option: Hide App to hide all selected apps with a single click.
Auto-create Ignore Rule When Unmatching an Expense
When you click Unmatch and ignore, a pre-filled Ignore rule popup opens with the expense description (editable). On confirm, the expense is removed from the matched table and the new rule appears at the top of the matching rules table.
You can now build dashboard widgets powered by Assigned Licenses data, making it easier to visualize, slice, and aggregate license usage in one place. Use these widgets to:
Expense matching rules now support AND conditions 🎉
You can now add multiple search terms to a single "Contains" rule — all terms must appear in the transaction description for a match. Terms are displayed as chips in the input, making it easy to view and manage your conditions at a glance.
Side drawers are now resizable ✨
Drag the left edge of any side drawer to resize it — especially useful for wider content like the workflow editor and policy access request editors.
You can now automate your access review campaign launches by scheduling recurring reviews to meet your compliance requirements. Mark any campaign as recurring, and Torii will automatically relaunch it on the schedule you choose - no more manual kickoffs every quarter.
Connect Vercel to Torii to manage access and automate workflows across your development environment.
Learn how to connect Vercel here.
Connect Livestorm to Torii to manage access and automate user workflows across your webinar platform.
Learn how to connect Livestorm here.
Connect Google Cloud Platform to Torii to sync user data and gain deeper visibility into cloud access and permissions.
Learn how to connect Google Cloud Platform here.
Connect Lumin to Torii to sync user data across multiple accounts per workspace.
Learn how to connect Lumin here.
Connect Mesh Payments to Torii to sync user and transaction data across the platform.
Learn how to connect Mesh Payments here.
Catalog search supports fuzzy matching for app names, making it easier to find apps despite typos or spacing differences. Results are ranked by relevance, with the closest name matches shown first, while description search remains an exact substring match.
Torii now automatically extracts line items from contracts synced via Ironclad, Zip, and Coupa.
Added CSV export preview in workflow trigger data. It is now easier to review and share workflow details outside Torii.
You can now view a detailed list of active app licenses on the Licenses page by clicking the active licenses count in the table.
Connect Fireflies.ai to Torii to sync user data and improve visibility into adoption trends and access-discovery insights for AI meeting tools.
Connect Typeform to Torii to sync user data and improve visibility into app ownership and access-discovery insights.
Connect Apollo to Torii to sync user data and improve visibility into access-discovery insights across the organization.
Connect Payhawk to Torii to sync expenses and user data across your organization.
The OneLogin integration retrieves assigned applications directly from the API for more accurate access-discovery insights. This improves assignment coverage and helps detect apps even when they have not been actively used.
OR filters are supported in workflow triggers and if/else branches, making it easier to build flexible conditions across workflows.
Okta Assigned Apps User Field - A new multi-value user field is available for the Okta integration, showing the applications assigned to each user and improving visibility into user access.
Stacked Bar Charts are available in Dashboards for visualizing data across multiple categories in a single bar. They help break down totals by dimension and spot composition trends at a glance.
You can now send a generic task to any user from a workflow — they perform the work, click a button when done, and the workflow continues. What’s configurable:
Dragging and dropping table columns has a smoother user experience.
The Navan Expenses integration has been migrated to the new API, expanding connectivity across supported regions and improving access for organizations with API availability.
The Public API supports creating a new account for a custom integration directly through POST /services/custom, streamlining setup and reducing manual steps.
Employees can now request any app via the App Catalog by simply typing its name and adding a few details. Torii will create a custom app and route the request through the selected workflow - keeping IT in control while capturing every need. Admins can choose whether to enable this capability via app catalog settings, ensuring flexibility and governance. App Catalog settings —> Request new application —> Allow requesting unrecognized apps
Security teams can scope access reviews to the users and permissions that matter most, reducing review fatigue and improving risk coverage.
Access requests with provisioning failures can be investigated and resolved directly from the requests table, reducing the need to open workflow executions.
You can now see the filters for tables and widgets even if you don’t have permissions to edit them.
OR logic is available for filters across tables and dashboards, making it easier to build views that match any of several conditions. This expands filtering flexibility beyond AND-only combinations.
The Application Catalog supports filtering by any visible application field, making it easier to find the right applications with greater precision.
Access Governance supports remediation levels for policy deviations, allowing deviations to trigger tasks for app owners with detailed instructions. The setting can be configured in Access Governance settings or at the individual policy level.
Access Reviews support bulk selection and bulk actions from the users table, making it easier to review large sets of users. Selection respects the current filter and search, and optional comments can be added when approving or rejecting multiple users.
Connect Torii to AI assistants through the hosted MCP server and extend automation workflows across supported tools.
Learn how to connect Torii MCP here.
Integration Builder supports OAuth 2.0 Authorization Code authentication for custom integrations. This expands the range of APIs that can connect to Torii and provides a more secure, flexible authentication flow.
Custom integrations for apps with native integrations support custom fields, making it easier to model app data with the attributes organizations need.
Workflow actions can be reordered directly in the editor by dragging and dropping nodes into a new position. Actions can be moved up and down a flow, or between, into, and out of branches. Branch nodes are not draggable.
Exporting user lists from the first step of the Access Review wizard supports external audits and manual preparation before review actions. The export includes visible columns and respects active filters, matching the Users table behavior.
Escalation flows support auto-declining approval request tasks. Task notifications include a clear indicator when a task is automatically declined due to escalation.
Escalation and reminder notifications use styled prefixes to distinguish them from regular task assignment notifications.
Task escalation is now supported for access review remediation task.
A new version of the Contracts API provides access to the same contract data available in the UI, along with advanced filtering, aggregations, and pagination.
Learn more on our developer portal
Access governance policies now support a configurable grace period for users who change role, department, or team. This helps employees transition immediately to new roles, responsibilities and app access, while giving them time to wrap up their previous work before access is reviewed.
Create User actions return the newly created user ID as an output for use in follow-up workflow steps. This makes it easier to chain actions together and pass the created user ID dynamically into downstream steps.
A per-organization toggle is available under App Catalog settings → Notifications to control requester notifications during the access-request lifecycle. Slack, Teams, and email notifications can be disabled while preserving the default on behavior for existing organizations.
The IT Admin role includes the "Take action" permission for the Application Catalog by default, aligning access with the latest Application Catalog improvements.
Access reviews now support separate ownership for review and remediation tasks, helping teams split approval and removal responsibilities with a cleaner handoff. You can define a dedicated assignee for remediation when creating a campaign, and they will be assigned with a remediation task when access review step is completed by the reviewer. You can read more about it here
Task details are easier to understand and work with across the board. The Tasks table includes a Task Type column, and task naming is more consistent across Catalog Approval tasks and related logic.
The workflow templates gallery now includes 56 ready-made templates, ranging from simple automations to advanced multi-level branching flows. Templates are grouped by department to make it easier to find the right use case.
Fixed an issue where auto-merging users incorrectly treated business email addresses with dots as the same user.
A new SCIM action is available for managing user profiles in Miro. This action supports updating account status, roles, identity fields, and enterprise attributes.
Connect NinjaOne to Torii to sync user, app, and device data in one place.
You can now manually choose colors for each segment of a Pie Chart widget. This allows for better data storytelling and a more personalized dashboard experience.
Users reported under aliases will now be merged more accurately, so you won’t see duplicate entries when there’s actually only one app user.
Added 5 new actions to the ManageEngine MDM integration:
Learn more here.
Non-human users now have a dedicated placeholder avatar that more accurately showcases them as non-human.
Remove Slack user from channels now supports private channels, expanding coverage across your Slack workspace. If you’ve already reconnected Slack after the latest scope updates, you’re all set—otherwise, reconnect to enable this functionality.
App and contract ownership transfer can be customized through workflow actions, giving organizations control over when reassignment happens, who receives ownership, and which conditions trigger the change.
You can now add if/else branching based on the output of a custom actions, making workflows more flexible and responsive to dynamic results.
Sort table widgets directly in View Mode without switching to Edit Mode. Sorting applies only to the individual user's view, so dashboard configurations stay unchanged for everyone else.
User lifecycle tracking is more flexible and easier to review across offboarding and profile pages.
The integration syncs both user and device data, including:
Learn more on here.
Easily organize and analyze your data with the new Grouping Records feature. You can now group records by any field to quickly uncover insights and trends, making it easier to understand your data at a glance and take action faster. For example:
Take control of how access to applications is requested, approved, and managed across your organization. This powerful addition brings structure and governance to the access request process, enabling you to define clear policies, streamline approvals, and gain full visibility into access activity—all in one place. ✨ What’s new
🧪 This feature is currently available in Labs
🔧 Enable it - Go to Settings → Labs and turn on App Access Catalog.
Learn more about it here
Bulk update offboarding settings across multiple apps at once. Select several apps together and configure each to delegate, ignore, or run automatically in one go.
Integration Builder is here! Giving you the power to create custom integrations in Torii without engineering support. Enterprise customers can now connect to any API, define how data is pulled, map it to Torii fields like users, roles, and licenses, and seamlessly sync everything into Torii. All you need is a basic understanding of APIs to bring any app into your workflow.
Learn how to build your own integration here.
The Copy Widget has graduated from labs and is now accessible to all enterprise users, enhancing the flexibility and efficiency of dashboard customization.
You can now enable a “Show running total” option for Bar Chart widgets. When grouping data by a date field, this setting calculates a running total over time. This allows you to visualize cumulative growth or spend rather than individual data points.
Elevate your security posture with the new Access Governance feature. Now, you can define and automatically monitor access governance policies across all users and integrated applications. This transformative feature shifts Torii into a governance engine, enabling proactive management of access rights and immediate detection of policy deviations. Here's what you can do:
If you’d like to try it out, be part of the early access, and provide feedback that can help shape the future of this feature, you can turn it on in Settings → Labs → Access governance.
The Zoom integration now supports granular scopes, replacing classic scopes with a smaller set of only the mandatory permissions.
Task Escalation helps prevent important work from being missed by automatically taking action when a task has had no activity for a configured period of time. You can configure Task Escalation per task type, and choose what happens when the escalation threshold is reached. Additionally, escalation actions will be logged in the task activity feed. For more details visit this Help article
You can now unmatch expenses directly from the All Expenses table.
“Closed App in Use” trigger now supports multiple app states (like “Need to Close”).
Bar chart widgets in Torii now support an additional line chart view, giving you more flexibility in how you visualize trends over time. With a single click, you can seamlessly switch between bar and line presentations—making it easier to analyze patterns, compare data, and choose the format that best fits your workflow.
Connect your Shapes account to Torii and seamlessly sync HR user data into the platform. For more details, refer to the Shapes Integration Guide.
Enhance task management with new predefined views in the Open Tasks tab, including 'All Open Tasks', 'My Tasks', and 'Open More Than 2 Weeks'.
The Sync button now stays clickable after a failed sync, so you can retry directly once the issue is resolved. No need to reconnect or re-enter credentials.
Contract parsing is now significantly improved for scanned contracts, DocuSign PDFs, and image-heavy documents.
A dedicated Owned apps tab has been added to each user’s page to highlight where a user is a primary or secondary owner. The original Apps tab now exclusively displays the specific accounts a user is currently utilizing.
The Allocate By field in the “Configure chargeback” popup is now searchable.
Several new widgets have been added to the Security & Compliance dashboard that showcase data on application security grade breakdowns. (Enterprise plan).
torii-cli is now available on npm, giving you a fast way to interact with Torii’s API from the command line. It supports discovery, read and write operations, dry runs, uploads/downloads, and structured JSON output, making it ideal for automation and tools like Claude Code. Learn more how to use it here.
The 1Password SCIM Bridge integration is now available to all customers. Learn how to connect it here.
You can now customize the columns shown on the User page for a more focused, flexible view.
The logic across all user pages and tables has been updated to ensure application counts are now aligned across all views. This column is now called “Applications” in all pages and tables.
Magic parsing for Claude AI and Lovable: simply export the users list from these apps and upload it to Torii. Torii automatically maps the fields, streamlining license and role management without manual data entry.
The app users tab for apps with a non-native integration (custom, manual, and Google Sheet integrations) will now correctly show.the correct user views (“Users with access”, “Users with and without access”, and “All users from all sources”).
UKG Ready Integration is now out of beta.
Custom Fields Support: Syncing custom fields is now supported (via API). New User Fields: added support for Manager, Start Date, and Termination Date.
New integration with action for: Canny, Port.io, SysAid, Cal.com and Slite.
Added the ability to schedule criteria-based workflow triggers, including:
Torii introduces Data Agents, AI-powered fields that automatically research and populate application data for you. Instead of manually tracking app details across spreadsheets and vendor pages, Data Agents continuously gather and update information — keeping your application records accurate and up to date. Learn more about this here
Introducing Security Grade, a standardized, AI-powered scoring system that enhances visibility into the security posture of every SaaS application. This feature automates the grading of applications, aiding in the prioritization of security efforts and the mitigation of high-risk Shadow IT. Here's what you can do:
We are excited to announce the internal release of Torii Sheets, a powerful enhancement for managing user data in custom integrations.Torii Sheets provide a brand new interface to view, edit, and sync data directly to Torii for your custom integration, without any dev work needed. Torii Sheets offers several strong capabilities:
Now, users can reset top-down chargeback configurations with a single click, simplifying the process of clearing existing allocations for fresh manual re-allocation when necessary.
The following integrations now support Users Without Email: Ashby, Docker Hub, Jira, Microsoft Teams, Workfront, Confluence, Pingboard
Here's what you can do:
Introducing AI Filters, a new way to streamline your workflow. Simply describe your desired filter outcome, and let the AI configure the optimal filters for you. Here's what you can do:
Specify the exact number of hours or days needed for access
Introducing more flexibility in the access request flow of our new App Catalog. Now, users can tailor their access duration to their specific needs.
Here's what you can do:
Now, navigating through tables is smoother and more intuitive. Horizontal scrollbars appear when you need them, making it easier to move through columns on any device. Plus, vertical scrolling is enhanced for a seamless experience as you explore lengthy lists.
Added a refresh button within the Action Log table to pull the latest data without needing to reload the entire page.
The following integrations now support Users Without Email: Asana, Concur, Coupa, Hexnode, JFrog, Litmos, LogicMonitor, Looker, Microsoft Dynamics Business Central, Mosyle, ServiceNow, Shortcut, Tableau, Vonage Business.
These integrations now display users even if they don’t have an email address. No action needed, this data is synced seamlessly.
UX: Campaign names within the campaign configuration wizard are more emphasized and easier to edit.
API update: you can now get aggregated license data per app directly from GET /apps and GET /apps/{idApp}.
More info on our developers portal.
Branch your access request policies based on the reason text, allowing for more nuanced approval decisions.
Torii now supports Non-Human Users, giving customers a clear and built-in way to manage bots, service accounts, automations, and AI agents separately from human users. As AI and automation rapidly expand across SaaS environments, these non-human identities increasingly hold powerful access — yet have very different risk, ownership, and lifecycle characteristics than employees. Torii now automatically distinguishes humans from non-humans, ensuring these identities are visible and governed. With this new capability, you can:
Contact Torii support to tailor Coupa to your needs. Existing configurations remain unaffected.
Now, you can quickly view the specific apps included in both active and completed access review campaigns directly from the list view. This improvement makes it faster to identify the campaign you're looking for without the need to navigate to the details page.
We’ve improved the Access Review user list to make recommendations clearer and reviews faster:
Jira Cloud Service Account Authentication
Jira Cloud integration can now be connected with a service account authentication using OAuth 2.0 client credentials. This update provides a more secure and streamlined connection method.
Introducing the Scheduled Trigger, a feature that allows you to automate workflows based on a specific frequency. This addition enhances the flexibility and efficiency of managing tasks and reports. Here's what you can do:
New User.ID Personalization Token in Workflows
The new User.ID personalization token is now available.
Here's what you can do:
User.ID token to tailor workflows more accurately to individual usersGain a comprehensive view of Google user roles, encompassing both custom roles and Google’s standard system roles. Please note, this enhancement necessitates an additional permission scope. To access the updated role data, reconnecting the integration is required.
Easily track when each app's last access review was completed with the new 'Access review completed on' column in the Applications table. This feature enhances visibility and helps prioritize which apps need your attention.
A modernized, redesigned UI to make it easier for users to navigate your application catalog and request access.
Scheduled reports now include new scheduling options: Monday–Friday and Sunday–Thursday.
Jira Cloud integration now supports service account authentication using OAuth 2.0 client credentials, alongside the existing User Basic Auth option.
Expand your control over Google integration with two new actions, enabling you to assign and unassign user roles more efficiently. Here's what you can do:
Empower your admins to assign access reviews to anyone within your organization, even without Torii platform access. This update streamlines the review process, making it more inclusive and efficient. Here's what you can do:
Now, you can expedite access reviews for non-integrated apps without the need for an immediate user list upload, provided the existing list is accurate. While we still advise updating your user list for the most current data, this update allows for quicker review processes when you're confident in your existing data.
Tasks data has been added to Torii dashboards! You can now create dashboard widgets showcasing tasks data, giving you instant visibility into what’s happening and what needs attention. Task-related widgets you can now create include:
You can now change the trigger of an existing workflow without losing its actions or configuration. With this update, you can safely update the trigger of an already configured workflow while keeping:
Pie chart widgets in Torii dashboards now have a Show total option. You can toggle this in the widget configuration.
The Hexnode UEM integration now supports group syncing, with group data synced automatically and no action required.
You can now reassign active access reviews directly from the Access Reviews page or the Tasks page. If the app owner has left, or the review was assigned to someone who isn’t familiar with the app, simply click “Edit assignees” and choose a new reviewer. The access review task is reassigned immediately, and the new owner is notified to complete the review.
Active access reviews can now be open by clicking the application name.
Dashlane, Metabase, Claude Developer, OpenVPN, and Grafana are now available in Torii. Learn how to connect each integration:
The expense upload experience is now improved with several enhancements:
Users can now control who can view or modify specific workflows. This new capability allows admins and users to restrict workflow editing to relevant team members, ensuring sensitive or domain-specific automation remains secure. Additionally, we’ve introduced a new Torii scope - Create Workflows, which allows users to create and duplicate workflows, even if they don’t have the Workflow Take action scope.
Selective Branch Deletion When deleting an action with branches (e.g., if/else or approval requests), users can now choose to keep one branch instead of deleting all of them.
AWS Identity Center integration now supports user group syncing.
Users can now use AI to auto generate a name for their workflow. The user will be presented with 3 suggested names that are based on the entire workflow configuration.
The Hexnode UEM integration now syncs additional device-related user fields, including device serial numbers, device models, device OS versions, and last reported timestamp.
The PingOne integration now supports syncing user applications and includes two new user fields - PingOne Title and PingOne Groups - ****providing deeper visibility into user identities and app access.
AWS IAM integration now supports user group syncing.
Launching access reviews now automatically creates tasks in your team’s preferred channel—Slack, Microsoft Teams, or email—making reviews easier to start and act on. Automatic reminders keep assignees on track, while admins receive completion notifications in the same channel, ensuring faster reviews and better visibility without switching tools.
Learn how to connect AWS Identity Center Integration here.
Workflow trigger - license not in use
We’ve added a 7-day grace period for newly assigned licenses. This prevents inactivity workflows from triggering immediately when a license is reassigned, giving users time to start using the application before being flagged.
Resolved an issue where external users that needed to be offboarded did not appear in the to-do view.
Added new device actions to the Microsoft Intune integration—Remote Lock, Delete User’s Devices, Wipe Devices, and Bypass Activation Lock, now available for use in workflows.
App Catalog Configuration: “Ask for Duration” Toggle
Admins can now choose whether to show or hide the “Duration” field when users request access to an app from the App Catalog. By default, this field is visible, but it can be hidden via the App Catalog configuration page
Offboarding email titles now also include the offboarded user’s name.
