# Week 35, 2022

**New Features**

**Allow & Block Lists Now Bi-Directional**

You can now toggle your lists to ‘Allow’ or ‘Block’ certain email domains or browser types. Setting these lists will help security analysts quickly identify authentication behavior that is out of policy for your organization by failing its respective checks when any of the criteria are met.<br>

<figure><img src="https://oort.io/hubfs/Oort_Assets-2022/Blog%20Post%20Image/new-features.png" alt=""><figcaption></figcaption></figure>

**Filter Panel Now Actionable**

You can now take action to include or exclude filters from the side panel when viewing the Users list. This enables specific populations of users to be shown in the results without having to enter a query in the search bar.

\
\ <br>

<figure><img src="https://oort.io/hubfs/Oort_Assets-2022/Blog%20Post%20Image/filter-panel-action.png" alt=""><figcaption></figcaption></figure>

**Behavioral Check Failures Now Explained**

You can now see the reason why a behavioral check failed. Navigate to any user, click the ‘Activity’ tab, then click the event in the table. The sidebar will open up with details of what behavior triggered the check failure.

<figure><img src="https://oort.io/hubfs/Oort_Assets-2022/Blog%20Post%20Image/check-failures.png" alt=""><figcaption></figcaption></figure>

**▶️ EventHub Integration Now Available for Azure AD**

You can now configure your Azure AD instance to utilize the EventHub streaming service. Using EventHub reduces the likelihood that your organization will hit any sort of rate limit when collecting logs. To enable EventHub, go to the “Integrations” tab, select your Azure AD instance, then click the “Event Streaming” tab. Enter your information and click Save.

<figure><img src="https://oort.io/hubfs/Oort_Assets-2022/Blog%20Post%20Image/azure-ad.png" alt=""><figcaption></figcaption></figure>

**Improvements**

👌🏻Customers using OIE can now enable collections for “Devices” and “Authenticators”

👌🏻 The Identity Security Check for “Risky Parallel Sessions” has been optimized to remove obvious machine communications


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.oort.io/release-notes/2022/week-35-2022.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.