Fixes

• Core - Connections/partial endpoint returns private key although it is Sensitive information.
• Setting Offline mode with User group.

Fixes

• Core - Fixed X-Forwarded-For usage.

Fixes

• Core - Restrict-CORS.
• Core - SQL injection when deleting a user.

Features

Server

• Added ‘Privileged Access' to the list of available landing pages.
• Improved performance on login with a domain user.

Fixes

Server

• Fixed domain caching on when using multi-domains.
• Fixed saving items in ‘My Account Settings' using RDM.
• Fixed the vault used when resurrecting an entry.
• The Devolutions Server URL is now case-insensitive.

Features

Console

• Added a confirmation before updating an instance.
• Added the version number next to the option when using ‘Download from the web (latest)'.

Fixes

Console

• Fixed error when opening the console when IIS is not installed.

Features

Server

• Web - Added a setting to use x-forwarded-for, for the IpAddress.
• Web - Added an option to keep the template name when creating an entry.
• Web - Added the option to import roles from a domain using the cache.
• Web - Secure message, added expiry date.
• Web - Updated color on error messages.

Fixes

Server

• Core - Fixed end point for the CLI.
• Core - Fixed error on notification when auto-creating a user.
• Core - Fixed error on notification when creating an entry.
• Core - Fixed the domain cache issue when setting the user's domain.
• Web - Fixed 404 on the admin page.
• Web - Fixed Incomplete Export File.
• Web - Fixed loss of data on iDrac.
• Web - Fixed loss of data on Ilo.
• Web - Fixed loss of data on SSH Shell X11 forwarding.
• Web - Fixed scheduled report - Error when using only 1 vault.
• Web - Fixed the alternate 2FA.
• Web - Fixed unable to see the log details on a deleted entry.
• Web - Vault assignment, show the list in alphabetical order.

Fixes

Server

• Core: Fixed server restriction for users allowed to manage users.

Features

Server

• Web - Send files as attachments in a Secure Message.
• Improvements
  • Web - Add export to Activity Logs.
  • Web - New filters for Users and Groups administration sections.
  • Web - Possible to import Active Directory users even with cache disabled.
  • Web - Refresh information on an Active Directory user from the domain in Users section.

Console

• Added localization.

Fixes

Server

• Fixed Active Directory auto create user issue when a group is specified.
• Fixed error in SQL query to get Opened Connections.
• Fixed query to get all expired and expiring entries in Report and Dashboard.
• View Password from the entry should behave the same way as the action view password.
• Web - Do not allow Duplicate action on root.

Features

Server

• Added new security setting to block Tor clients from accessing the server.
• Added new built-in roles with specific rights for easy assignment.
• Added new onboarding wizard to facilitate initial import of Privileged Accounts.
• Added "Duplicate entry" command.
• Each Vault now has a Dashboard & option to disable.
• Added the ability to configure custom icons for server login page and toolbar.
• Added support for License administration section.
• Added capability of exporting the User Vault ( Private Vault).
• Added new Security dashboard in Administration menu.
• Added option to filter out system users on SSH scans.
• Added OU browser for Active Directory scans.
• Added input boxes for Comment on open and Comment on close.
• Added new dashboard when selecting Vault root in tree view.
• Added option to resurrect deleted attachments.
• Added possibility to insert Ticket number on Insert comment and Close comment.
• Added support for Duplicate action on entries.
• Added support for Passportal My Account Settings.
• Added flag for Favorite Vaults, greatly improves the search and the Vault Selector.
• Added the ability to Approve or Deny and Check in from RDM Dashboard.
• Added the ability to Approve or Deny checkouts from the secure message received.
• Added the option to disable the new Vault Dashboard.
• Improvements
  • Core - Active Directory integration supports multiple root containers.
  • Core - Back up can be Encrypted with a password.
  • Core - DataSource Logs and Administration Logs can be sent by emails Notification - new category.
  • Core - DNS name server setting now used in notifications.
  • Core - Improved Email template for Notifications.
  • Core - System Settings - New RDM Version Management section.
  • PAM - Different options available to define Approver + a pre-define Role.
  • PAM - Include account SID for Active Directory scans.
  • PAM - Possible to force Check in from the Checkout Manager Active.
  • Web - Favorites can now contain links to entries of User Vault (Private Vault).
  • Web - Improved data contained in the Server Diagnostics report.
  • Web - Removed number of character limit from Secure Messages.
  • Web - Searching for entries now possible to include description & URL or equivalent URL in search fields.
  • Web - User Vault (private vault) entries can now select Credentials repository from other vaults.
  • Web - Choose Theme - Light, Dark or Default will default to your browser theme.
  • Web - Database Diagnostics report now available from Reports section.
  • Web - Deleted Attachments can be viewed and be restored.
  • Web - Entry from User vault (Private Vault) can be added in your Favorites.

Console

• Added a new Console Interface.
• All Administration options are accessible only in the Web Interface.
• Added the ability to enable HTTPS and web.config encryption by default when installing.
• Installation process now allows creating website in root.
• Scheduler service starts after installing.
• When upgrading a server a check will be made to validate minimum Console version authorized to install new server version.

Fixes

Server

• Core - Active Directory cache now includes embedded groups for Universal Groups.
• Core - Application Users should not be included in the user count.
• Core - Fixed memory leaks in Scheduler service.
• Core - Windows Authentication user binding when UPN is empty.
• PAM - Fix error when creating a Provider and a Scan at the same time.
• PAM - Fixed Reset Password Schedule recurrence.
• Web - Add validation for Password Template name on creation.
• Web - Contact type entries lose custom icon when editing.
• Web - Corrupted Secure Message would prevent loading all the Secure Messages of the user.
• Web - Entry custom icon is now saved when also renaming or moving the entry.
• Web - Fix 2FA configure later feature by giving anti forgery token when 2FA configuration is required.
• Web - Fix alarm entry type creation in private vault.
• Web - Fix CyberArk validations to support saving entry.
• Web - Fix Email Settings save button when changes other fields than Password.
• Web - Fix export from private vault to contain entries in sub-folders.
• Web - Save changes to Active Directory Domain Authentication without entering administrator credentials.
• Web - User with Manage Users permission could not import Active Directory or Office 365 users.
• Web -Test email setting without a username or password should not send error email to administrator.

Features

Console

• Improved the UI.

Fixes

Server

• Radius shared secret lost following upgrade.
• The user account names that end with letter u deleted when permissions are set.
• User could be logged on as different user with Microsoft Windows Authentication.

Features

• Can now select Pam Credential in User specific Setting: with RDM need version 2020.2.18.0.

Fixes

• For RDM, fix connection state for sub-connections viewed by users.
• For RDM, fix CyberArk AAM type to be save.
• Web - Fix passwords being lost when moving a Password List entry with drag and drop.

Features

• Added option to activate the Auto-notification for Duo 2FA (Two-Factor Authentication).
• Improve performance when querying Activity Logs for a non-admin user.
• Web- Improve UI of the Cleanup logs feature.

Fixes

• Console - fix default setting at installation.
• Fix error when domain cache update process (Microsoft Active Directory & Microsoft Azure).
• Fix the Add entry using the Prompt Add with the browser extension (Chrome and Firefox).
• Web - Password Templates is now showing in the Password generator.
• Web- Fix the Import roles from LDAP or Azure if done with non-admin user.
• Web import - added warning if the Master key of file is missing.
• Web- wont see the Shortcut entry from a folder that to don't have the right for.
• When refreshing the tree it now keeps the same tree view (keeps open folder that was open).

Features

• Added Master password on Vault.
• Added Syslog type Notifications, giving the ability to send Notifications to multiple Syslog servers.
• Added the user Language setting in User Template.
• Last Usage log report.
• Logs Cleanup feature to archive and purge. See In Administration/ Logs to enable.
• New Time-based access for Users.
• PAM - Ability to export Privileged Accounts.
• Improvements
  • Breaking Changes - New setting to Enable internet access. False by default, disables Gravatars & Have I been Pwned.
  • Add Private Vault Search as Credential Type.
  • Add the value ''None'' when selecting Vault for automatic user creation.
  • Attachment will now resurrect with their entry after deletion.
  • Console: Step added to create a default administrator account on first install.
  • Link automatic user creation to User Template settings.
  • Manage custom images for Vaults.
  • PAM - Improve message for denied checkout email message.
  • Support entry type API Key.
  • Support splitting Wallet entry into: Membership, Driver License and Social Security Number.
  • Web - Add a search option in the entry Search to support Username & URL.
  • Web - Add support for Gateway Credentials for RDP entries.
  • Web Entry Website: added the compare type options to support Equivalent URL with DWL.

Fixes

• Fix external link in a Secure note entry.
• Fix possible date conversion error when getting entries for Expired Entries Report.
• Fix right-click on item when in Vault view is in List type.
• Fix saving Checkout Comment in the logs.
• Fix Vault selection for Domain Automatic User Creation.
• PAM - Deleted folder account should still show in the Logs.
• Password Template maximum length increased to 1024.
• Pwned Password 'Always Ignore' not working in Private Vault.
• Remove download link for Certificate entry when user does not have permission.
• Web - Cannot choose a credential from a Password List in an Entry.
• Web - Cannot choose a credential from a Password List in User Specific Setting.
• Web - Can't edit permissions in the Security tab for an already created template.
• Web - Entry search. Fix the entry selected during a search now Focus in the tree view.
• Web - Exporting entries by selecting the Vault root returns an invalid file.
• Web - Fix Documentation history.
• Web - Fix Expiring Report option for All Vaults.
• Web - Fix OTP entry of Private Vault.

Fixes

• Possible performance issue in RDM managing Roles.

Features

• Change Secure Message - Use the full name of user first instead of the username showed on the user list to sent the message.

Fixes

• User that has Manage Roles can now see and manage all roles , except administrator roles.
• User that has right to grant permission on entries can now see all roles.
• Web error cause by a missing permission on entry in the Web interface.

Features

• Improvements
  • PAM - Accounts section,can drag and drop folder in other folder.
  • Syslog improvements - Added heartbeat and a few administrative events.
  • Web - Add Vault filter in the Expired Entry Scheduled Report.
  • Web - Admin-Email settings added validation.
  • Web - Can move entries by drag and drop in Vault tree view.
  • Web - Can now Export entries.
  • Web - Visual improvements to user Dashboard page.

Fixes

• Check In/Out On close comment not saved.
• Console - Fix upgrade instructions not showing up.
• Console - When changing user password.
• Console -Fix possible database error when regenerating encryption keys.
• Error XML on new vault properties.
• PAM - Add missing information in Notifications for new SQL Provider.
• PAM - Fix language inconsistencies in log messages.
• RDP entry link to a file cannot be edited.
• Web - Add a visual indication when you try to edit a role/user and the server does not let you.
• Web - Deprecate entry type Login Account.
• Web - Fix error when forcing user to change password at next login.
• Web - Fix Google Authentication two factor registration key which was in wrong format.
• Web - Fix resolved permissions text in entry security.
• Web - PassPortal Always prompt for organization passphrase checkbox can't be checked.
• Web - Password List Copy Domain/Password does not log the action.
• Web - Sending Private Entry in Secure Message should not include folders.
• Web - Two Factor login window not showing in IE and Safari.
• Web - Vault - Add in root - setting cannot be changed.

Features

• New Features
  • New Encryption Keys added. (It is strongly recommended to export a new Encryption backup file).
  • Web: Added a new report: Non default permission entries.
  • Web: Added a new Section in entry dashboard: Permissions - Overview of rights for the entry.
• Improvements
  • DPS Web - Added option to clear activity logs.
  • DPS Web - Import users and roles from LDAP and Azure now has a filter.
  • PAM - Cards in dashboard can now be clicked to go to a section.
  • PAM - Reset Password Schedule now syncs the credentials afterward.

Fixes

• DPS Console - IIS application pool not properly stopped when upgrading DPS server.
• DPS Web - Cannot see the passwords in a Password List in the Private Vault.
• DPS Web - Credential Repository in Private Vault shows the credentials from the Shared Vault.
• DPS Web - Fixed issue with Firefox and Safari browsers doubling all API requests.
• DPS Web - Removes Security Groups notion in all sections when not using Legacy Security.
• DPS Web - You can now set the Token Valid Time up to 7 days (10,080 minutes).
• PAM - Privileged Account used for Brokering with Launcher cannot automatically check-in on connection closed.

Features

• New Features
  • New Recording Server module is available to centralize session recordings.
  • You can now manage SQL accounts in the PAM component.
• Improvements
  • Drag and drop support for file selection for attachments.
  • Licensing - automatically assign to new users.
  • Remove Local machine and database authentication type.
  • View Password on OTP is now logged.
  • Web - System Setting save changes notifications.

Fixes

• Bug - DPS Console potential crashed after upgrading it to version 2019.2.12.
• Bug - Duo hardware token not displayed as a 2FA device on the web UI.
• Bug - Duo setup on first login not working from RDM.
• DPS - No 2FA prompt in Edge, Explorer and Safari.
• DPS Web - Can't reset 2FA from Office365 users.
• DPS Web - Permission Tab should not display in Private Vault.
• DPS Web - Remove PAM credentials type from Web browser entries.