Passwordstate 7.5 - Build 7583 (13th February 2016) 

• Updated the Validation Script for local Windows Accounts for some systems where the Username needed to be specified in the format of HostName\UserName

• Fixed an issue where the re-encryption process when upgrading to build 7580 may have failed on the SystemSettings table
• Fixed an issue where a similar Host Name match was found when adding Host records, preventing saving of the record

Passwordstate 7.5 - Build 7580 (12th February 2016) 

• Added a new One-Time Password authentication method for the Web UI and Mobile client based on the TOTP and HOTP algorithms
• A new Secret Key Rotation features has now been added to allow regular encryption key rotation

• Encryption Keys can now be exported to a password protected zip file for disaster recovery purposes
• Encryption Keys now use Secret Splitting to mask their identity
• Every install of Passwordstate now uses two unique keys to perform the encryption, instead of the previous one
• HMAC-SHA512 Hashing algorithm is now used to validate tampering of data directly in the database is not occurring
• Random Initialisation Vectors are now used for every encrypted field and record
• Added brute force login detection to all authentication methods in Passwordstate
• A new System Setting option has now been included to prevent specifying API Keys in the QueryString of the API method call
• Added FIPS Compliance support for Passwordstate
• Have added a new System Setting option to allow nesting of Password Lists beneath other Password Lists if needed
• Added better error reporting if a Password List associated with a Discovery Job had been deleted - previously reported conversion of string to boolean error
• Added a user based option where they can choose to hide all Password Lists/Folders in the navigation tree when they first log into Passwordstate
• When toggling the visibility of of Web APIs for a Password List, we now hide certain controls above the grid so the keys are more visible
• You can now add in multiple Host records with the same name, if they have a different Remote Connection port number, and we've added the Port Number to the Hosts grid
• Export all Passwords In Folder from within the Administration area is now exported to a password protected zip file
• Added a license check to ensure the license count matches for Client Access Licenses and the Annual Support keys

• When changing the value of a password field which was linked to various Hosts, it was performing a password reset even though the option Manage Account was not checked
• Password Reset Results emails were being sent when the Email Template was disabled
• When using forms based authentication, the new Maintenance Mode feature would not allow any user accounts to login in when maintenance mode was enabled
• Fixed an issue where a user's Guest permissions could have been removed from a Password List when they were adding new password records and security groups where being used as the permission type
• The Save And Close button was enabled on the Edit Folder screen for users who did not have administrator rights to the Folder
• Filtering on a Password List when using the Password List Bulk Permissions feature was not allowing you to move the Password List into one of the Permission textboxes
• When creating Password List under the Administration Area, it was possible it could have shown an error about not being able to create a Private Password List underneath a folder which was configured to propagating permissions
• Fixed issue where the page would not redirect if cloning a folder from within the Administration area
• When viewing permissions on a Folder from within the Administration area, it was possible to change permissions even though the Folder was not configured to have its permissions managed manually
• The option to Auto Generate a new password value when adding new records was not working
• When using the Save & Add Another button for a new folder, no permissions where applied when the top level folder was set to propagate permissions downwards
• When selecting the 'Toggle All Password List Visibility' menu, filtering on Password Lists in the Navigation Tree was not working

Passwordstate 7.5 - Build 7551 (26th January 2016) 

• Added support to the Linux Password Reset Script for Mac OS X
• Added an option where a Private Password List can be created for all new User Accounts which are added to Passwordstate
• Added the option to import Bad Passwords from a csv file

• When granting permissions to an individual Password record due to a user requesting access, if the approving Security Administrator did not have Admin rights to the Password List, it did not grant Guest permissions for the user requesting access
• Fixed an issue with the Resource Discovery Job where it could have reported an error about a DBNULL operator comparison error
• If the Heartbeat column in the Passwords grid was not visible, reordering the position of more than one column at a time was not possible due to a javascript error
• When initially setting up Passwordstate and connecting to an existing empty database to create all the tables, a Server 500 error was experienced if the SQL Account being used had an ampersand symbol in the password
• The popup guide for a Password List was showing HTML formatting tags instead of the actual formatting
• Could not edit a Password record if the AccountType field was selected for the Password List, and the record was saved via the Browser Extension
• All Passwords History Report and All Passwords Report could not be opened with certain zip programs
• When using the 'Request Access to Passwords Lists' feature, clicking on a Password List you had no access to was non-responsive
• Fixed an issue where Passwords Home or a Folder would not display when the Recent Passwords grid was being displayed

Passwordstate 7.5 - Build 7539 (2nd January 2016)

• It is now possible to clone a folder structure when you have Modify access to the Folder

• Fixed an issue with the API to resolve issues with the Browser Extension not auto-configuring - IE still requires a FQDN URL to use the Extension

Passwordstate 7.5 - Build 7537 (27th December 2015)

• When clicking on any permalinks for records in Passwordstate, if the 404 error page does not redirect quick enough, instead we know display a message about waiting for the redirection

• Fixed an issue in where the Browser Extension would not auto configure itself if the URL was not in a valid FQDN format. If a valid FQDN is required and not being used, then this is now reported in auditing data

Passwordstate 7.5 - Build 7535 (20th December 2015)

• Fixed an issue where members of nested security groups may have been removed during the scheduled AD sync process
• When there was more than one web site login credential, the Chrome Extension was only form filling the first entry
• Right click menu options for adding Folders and Password Lists were not disabled if the user was not meant to have access to these features
• Fixed an issue for an Open Connection error in the Windows Application Event log when a security group is being deleted as part of the scheduled AD sync process

Passwordstate 7.5 - Build 7531 (18th December 2015)

• Updated Active Directory and Local Windows Account Validation scripts to overcome issues with environments which may have tighter security controls
• Removed Windows Server 2003 from the Discovery and Password Reset screens due to this OS not being supported
• Updated the Active Directory account password reset feature to support accounts in User Principal Name format
• Added a count to the Document button for Password Lists
• Added additional debug data for the Active Directory Security Group synchronization process
• Made changes to the Folder Propagating Permissions feature to allow users to create Password Lists beneath them, regardless of the permission level at the top level folder

• When dragging a Password List which was not inheriting permissions into a Folder structure which was propagating permissions, the flag on the Password List to indicate it was inheriting permissions was not being set
• Made some changes to the scheduled Active Directory Security Group synchronization process to overcome an issue where users may have been removed from Security Groups within Passwordstate
• The High Availability instance of Passwordstate was trying to write to the DebugInfo table when it shouldn't have been
• When adding a password via the API, the request may have failed when adding Password History if no ExpiryDate was set
• The Remote Session Launcher for RDP sessions was not working if the UserName or Password had a space in its value, or if using User Principal Name format
• When adding a password via the API, then GeneratePassword setting was not generating a random password
• Some variables in the Self Destruct Email template where not properly being replaced at the time the email was sent
• It was possible that Passwordstate reported an Active Directory password reset roll back was successful, but didn't roll back the change in Active Directory
• Bar chart statistics on Passwords Home and Folders was showing the same statistics for All Users and the currently logged in User
• When moving a Password List into Passwords Home from a Folder which was propagating permissions downwards, the Password List was still configured to inherit permissions

Passwordstate 7.5 - Build 7515 (5th December 2015)

• We have now added the Tree Path to the screen Pending Access Requests so it's easier to see what Password List the request is for
• Remove various fields from the Enumerated Permissions Report, to limit the amount of data exported
• Added a label to the Backup Settings screen to inform users they should restart the Passwordstate Windows Service if they change the schedule at all

• The scheduled report Enumerated Password Permissions may have been reported on records in the Recycle Bin
• The Report Type column on the Scheduled Reports screen may not have displayed the correct value
• Fixed an issue where a PasswordListID value of 0 was being used in the TreeViewState table when it shouldn't have been
• Fixed an issue where under certain circumstances permissions to a Folder may have automatically been removed
• And the Add and Edit Passwords screens, the Privileged Account Credentials dropdown list for Password Resets was disabled for Active Directory accounts, preventing manual configuration of other reset tasks

Passwordstate 7.5 - Build 7507 (4th December 2015) 

• Made some changes to database querying in the API for the Passwords Home and Folder chart to improve performance
• When a Security Admin impersonates another user's account, they cannot modify permissions to Password Lists or Folders even if that user had Admin rights
• Scheduled Password Validation can now occur even if the password is not enable for resets
• Discovery Jobs can now add new records to Passwordstate without enabling the Password Reset option
• When a Password Validation occurs, if there is some form of error which prevents validating the Password, auditing data is now added and an orange Icon is shown in the Account Heartbeat column
• You can now execute a Password Validation script for Active Directory Accounts on demand through the Passwordstate web interface
• Added a new column to the Passwords grid to show a count of associated Password Reset Tasks for a record
• Added a configurable OperationTimeout setting to Discovery PowerShell scripts
• When an Active Directory account is configured for resets, the record is now added to the Reset Tasks count on the Edit Password screen
• Added a Verbose Logging screen for Manual and Scheduled Backups
• Updated the Active Directory account validation script to also support UPN account format
• Various Host timeout settings are now configurable for PowerShell scripts on the screen Administration -> System Settings -> Hosts
• On the main Administration screen, we've added the option to enable Maintenance Mode if you have the correct Security Administrators role

• The use of Privileged Account Credentials was not showing accounts to users when permissions were applied to them via Security Groups
• When a user had View access to a password record which had mulitple password fields configured, trying to click on the magnifying class multiple times to unmask data was causing a JavaScript error preventing visibility of data as expected
• Fixed an issue where the new Maintenance Mode feature may have interfered with various schedules executed by the Passwordstate Windows Service
• Under certain circumstances, adding a password record via the API could results in a 'no compatible route found' error message
• The Reset Tasks count on the Edit Password screen was showing a count for Hosts which were set to unmanaged
• Fixed and issue with using Bulk Permissions on Password Lists in the Administration area
• Fixed a potential issue where Password Validation for certain records may not have been executed at the set schedule
• Any of the Telerik Editor controls, like Password Notes field, was stripping line feeds during a paste operation
• After pressing the Save button for Screen Options for the Password Lists page, it was prompting to export history data for records
• You could no longer manager permissions on Folders within the Administration area, if your account did not already have Admin access to the folder
• When impersonating a user's account, the option to delete a Password List was available

Passwordstate 7.4 - Build 7483 (18th November 2015)

• The Password Reuse Report no longer shows the password values, and also does not return any records where the password value is blank
• Any reports through the user interface which export password values into CSV files are now compressed in a password protected zip file
• Password Strength Compliance Report now includes the UserName field

• The new Maintenance Mode feature introduced in build 7476 was causes issues with Inactivity Timeout setting not logging users out
• The Handshake Approval process for permissions was giving a Page Not Found error when declining access, or when the Handshake Timer expired
• Made some changes to overcome an error when creating your first Password record - caused by duplicates existing in the PrivilegedAccountsACL table
• When adding passwords via the API, if the AccountTypeID field for a Password List was set to mandatory, the API would error saying the AccountTypeID value was blank even though it was supplied

Passwordstate 7.4 - Build 7476 (10th November 2015) 

• Permissions from top level folders can now be propagated down to all Shared Password Lists and Folders

• The Copy to Clipboard feature no longer requires Flash in the browser to function
• You can now restrict API Access by IP Addresses on a per Password List setting
• The Password Strength Compliance Report now includes a column called Bad Password, to indicate if there was a bad password match or not
• Added an exclusion to the Resource Discovery script to ignore a scheduled task bug for Microsoft Sharepoint Workflow Manager
• Added a regular clean up process for any old files left in the Upload folder
• When adding a password record via the API and you have enabled it for Password Resets, then any Discovery Jobs can make use of this record instead of creating duplicates
• Added a new Maintenance Mode which prevents users from logging on, and allows you to specify a time in which users sessions will be terminated
• Made some changes to the IIS Application Pool reset script to ensure it could be successful started after stopping it
• Added -IncludePortInSPN parameter support for Invoke-Command for various Windows reset scripts
• A new Error Console screen has been added to the Administration area, and error debug data will no longer be visible to general user accounts
• Pressing the Enter key of the Username field on any authentication screens now initiates the login process, just the same as the password field
• You can no longer type the Upgrades URL directly into your browser
• Made changes to account handling on Upgrade screens for improved security
• Added checks to upgrade pages to ensure the user had the correct Security Administrator role in order to perform upgrades
• Added additional checks to ensure no permissions to Private Password Lists can be changed in anyway
• Added additional checks so permissions can only be added to Password List if you are Administrator of them, or a Security Administrator
• In addition to a user session variable being destroyed on logout, their secure ASP.NET State Session cookie is now also destroyed
• Changed any Disabled columns in grids to read Enabled, and showed an appropriate icon for each status type
• You can now only nest Password Lists and Folders beneath other existing Folders - or Passwords Home
• Removed the ability to create Folders from within the Administration area
• The Navigation Tree will now be sorted by Folders first, then Password Lists - in alphabetical order

• On the Hosts screen, using the paging buttons was clearing any filtering set on the page
• Fixed an issue with AD Sync process where a circular loop of nested Security Groups could have caused the IIS process to spike CPU, or crash the Passwordstate Windows Service
• After cloning a user's permissions and moving any Private Password Lists, the destination user would have received a database integrity error issue when trying to access any Private Password Lists
• When searching from Passwords Home, it was possible that not all Password Lists your account had access to was being searched
• Requesting access to Password Lists was broken, preventing adding of permissions if the request was approved
• Fixed some issues to further protect against Cross Site Scripting issue (XSS) attacks
• Some scheduled Account Heartbeats may have started failing as we overlooked inserting the correct license key for the Chilkat SSH component
• For the 'Test Script Manually' feature, any SSH script using the Chilkat SSH component was failing, as we overlooked inserting the correct license key for this component
• It was possible to upload documents at the Password List level when you only had Guest Access to the Password List
• The Remote Session Launcher utility would not launch SSH sessions if the password had a comma or semicolon in its value
• Reinstalling the Remote Session Launcher utility would cause remote sessions to fail as the PowerShell script being used was appending configuration settings on every reinstall
• Fixed an issue where users may have been removed from an Active Directory Security Group during the scheduled AD sync process if there was a computer object within the group
• Bulk Permissions for Password Lists would not list the available Password Lists if the TreePath field was NULL for one or more records
• It was not possible to add a new Password Reset or Validation Script manually, unless you copied contents from a pre-existing script
• An error message about the Privileged Account Credential for a non-trusted domain when resetting AD passwords could have occurred, preventing a password reset
• The error message returned from Password Reset scripts if you forget to associate a Privileged Account with the Password Record, was still indicating you needed to associate the Privileged Account with the script itself
• If using one of the Manual AD authentications screens, it was not reporting to the user that their account was disabled in Passwordstate
• If your user account was disabled in Passwordstate, and you change the UserName field to another account in the AD Login screen, it would not let you authenticate with the second account
• Certain password fields on various screens would not allow the use of special characters such as < and >
• It was possible the password Recycle Bin could show an exception when you browse to it

Passwordstate 7.4 - Build 7434 (9th October 2015) 

• When adding new Password Lists or Folders, by default they can only be added beneath existing folders now
• Surname for User Accounts in Passwordstate are no longer mandatory

• When searching for passwords in Passwords Home, some passwords may not have been found if Password Lists where nested beneath other Password Lists
• When using the Copy or Move to Different Password List feature from Password Home or Folders, the popup screen would not close after performing the required action
• Under certain conditions, an exception may have occurred when selecting one of the Actions dropdown menus, when using Internet Explorer or Firefox
• If a user's Surname was NULL in the database, certain screens would not show the FirstName as well
• Under certain circumstances, the once a day scheduled for synchronizing Active Directory Security groups was not working
• Fixed an issue where importing user accounts from Active Directory may not have completed, if there were System Accounts being imported whose field lengths were too big for the Passwordstate database fields

Passwordstate 7.4 - Build 7426 (5th October 2015)

• We broke the ability to use the Request Access to Passwords feature in build 7422
• Google GR Code was not being centered in the page for IE 9
• Made some changes to overcome a SQL Timeout issue in Build 7422 when clicking on Passwords Home or a Folder
• When viewing members of a Local Security Group, sorting by the User Name field was causing an exception

Passwordstate 7.4 - Build 7422 (30th September 2015) 

• You can now specify the Ping Packet Size for the Host Heartbeat feature
• Made performance improvements to the Security Group and User Account cloning process as it relates to permissions for Password Lists
• Various Notes fields now strip any Microsoft Office formatting when pasting from Word or Excel
• Reduced the number of calls to the database significantly when clicking on Passwords Home of a Password Folder, which helps improves performance of page loads
• Removed the old 'View Password Reset Tasks' icon from passwords records on the Passwords Home page to make it consistent with the View Passwords page
• When using the 'Link to Password' feature for a Privileged Account Credential, we now show Title and Description so records are easier to identify
• The notification for Annual Maintenance expiring will now only be visible to Security Administrators
• Made changes to protect against inline proxy scanning tools manually manipulating querystring parameters
• Any attempts to manually manipulate QueryStrings will now be redirected to a 404 page not found page
• Set autocomplete="off" for all password textboxes so Firefox and IE do not remember previously typed values
• Increased the default timeout on pages when cloning permissions for User Accounts or Security Groups
• The option to convert Private Password Lists to shared is now hidden by default and customers must contact Click Studios to enable the option
• Added an option to not show a list of Email Addresses on the Permalink screens for non Security Administrators
• Set the ASP.NET Session Cookie as secure by default
• Public Key authentication can now be used with Privileged Account Credentials to perform Password Resets in Linux Hosts
• The Discovery Job process now queries all existing Password Lists to see if accounts already exist in them, instead of just the Password List specified in the Discovery Job

• When reading Self Destruct Messages, if the URL being accessed is not HTTPS, the user will be informed they need to use it
• Using the 'Save and Add Another' button when creating a Folder was not clearing the screen to allow you to create another folder
• When searching for User Accounts in the Administration area, to add to security groups or apply permissions somewhere, disabled User Accounts will not be returned as well
• The page which informs the user they do not have an account in Passwordstate could have reported a blank UserID value
• Restoring the default Reset Scripts for F5 BIG-IP and Dell iDrac was not working
• Fixed an issue where an error may have occurred when deleting a Privileged Account Credential
• It was possible to upload PSD files for branding on the System Settings screen, when only png, gif or jpg files should be used
• Selecting Non Active Directory Accounts on the Privileged Account Credentials screen was not hiding the Check Password button
• When moving a Password Record with individual user Permissions to a new List, Guest access was not being applied to the new list for those users
• When deleting a password record on Passwords Home or a Folder, the Recent Passwords grid was not updating
• The Recent Passwords grid was not showing records which had permissions applied via a security group
• When setting an Account Type for a password record from 'Active Directory' account back to blank, it was possible all records in the Password List where not being displayed, or an exception was raised
• When using the Bulk Permissions feature for Hosts, if you removed permissions to all Hosts for a user or security group, the Save button did not perform the action

Passwordstate 7.3 - Build 7393 (4th September 2015) 

• You must now have PowerShell 3 or above installed on your web server, otherwise your will experience a Server 500 error. Download from https://www.microsoft.com/en-au/download/details.aspx?id=40855
• If you are using the Linux Password Reset script at all, you now need to have Microsoft's Visual C++ 2013 Runtime library installed on your Passwordstate web server - https://www.microsoft.com/en-au/download/details.aspx?id=40784
• Host Types and Operating Systems have been set back to their default values. If you have added any of your own custom records here, you will need to do so again on the screen Administration -> Host Types & Operating Systems
• Password Reset Scripts no longer need a Privileged Account Credential associated with them - this is applied at the password record level now if required
• If you have modified any of the Password Reset or Validation Scripts provided by Click Studios, majority of these scripts have been set back to defaults in this build. It is now recommended that you create your own scripts for this purpose, and clone the contents from the default scripts we provide
• If you have modified any of the Discovery Scripts provided by Click Studios, these scripts have been set back to defaults in this build. There are now options for the Discovery Jobs to include/exclude cetain accounts from the Local Administrators Discovery Job
• If you have Host records currently added in Passwordstate, please review the new settings on the screen Administration -> System Settings -> Hosts tab
• If performing Password Resets, please refer to the new KB Articles in the User Manual, found in the Help Menu

• It is now possible for Failed Password Reset tasks to roll back the password value within Passwordstate
• Added support for resetting passwords on F5 BIG-IP Load Balancers
• Added support for resetting passwords on IBM's IMM out of band management cards
• Added support for resetting passwords on Dell's iDRAC out of band management cards
• Added an feature where various Password Reset and Validation tasks can be updated for multiple password records at once
• Added a new Account Heartbeat feature where Password records can now be polled on a regular basis to ensure the passwords stored in Passwordstate match what is being used on the Host
• Hosts can now be polled regularily to ensure they are on-line, with multiple options for setting the Host as Unmanaged, or to delete the Host record if not seen on the network for an extended period
• Added the option to test Reset, Discovery and Validation Scripts within the Passwordstate interface, with your own test data
• Added support for resetting passwords for Linux root accounts
• Added a new report to query when a password value was last updated
• When a password value is updated, we now track this date and provide a column in the Grids to view it
• Added an option to retry failed Password Resets on a more frequent schedule
• Added support for discovery other types of operating systems in Active Directory with the Hosts Discovery job

• Password Reset Scripts no longer need a Privileged Account Credential associated with them - this is applied at the password record level now if required
• The 'Bulk Update Passwords' feature is now only available to Administrators of Password Lists
• When viewing access requests for password records, we now include the UserName field for the password record in the grid view as well
• The dedicated Remote Session Launcher page no longer opens in a new tab in the browser, and you will return to this page if your session in Passwordstate ends
• Made changes to Backup Settings screen to better explain backup and in-place upgrade account requirements
• Added a 'Refresh Grid' button to the Auditing grid on each of the Password List pages
• When users are adding Hosts into Passwordstate, they are now informed if the Host already exists - adding manually, importing and the API
• Redesigned the 'View Password Reset Tasks' screen to see last Account Heartbeat status, and to initiate a Heartbeat Poll for Hosts and Accounts
• Password Validation Scripts no longer need to have permissions applied to them in order to associate them with a password record
• Made some changes to the main Vertical Menu System so the menu can be pinned when it is expanded
• Added 2 new audit events for the regular account Heartbeat password validation process
• You no longer need to specify a Description when adding Password Lists or Folders
• When opening the Edit Password screen when navigating from the Administration area, you will now be redirected to the View Password screen
• "Validate Passwords Are In Sync" actions menu item has been removed now regular schedules for Account Hearbeats can be configured
• Added right mouse click Context Menu to Navigation Tree for creating folders and password lists
• When adding passwords via the API, you can now also select the Validation Script to associate with the password if you choose to enable the password for performing resets
• Added additional error checking to the Get-Resource.ps1 PowerShell script for better error capturing
• When Adding/Editing password records, if Password Reset is enabled, the relevant Password Validation Script is now automatically selected when choosing the Account Type
• Pattern matching for Password Generator Policy can now include Special Characters
• Renamed some of the Custom Images, and added a few extra
• When adding Custom Images, the Custom Image Name field will not be overwritten with the name of the file
• When adding a Remote Session Credential query, you can now use wildcards for matching Host Names
• Added a new System Setting option to turn off the popup 'Guided Tour' for new user accounts
• A parent Password List/Folder will now automatically expand in the tree view when creating any nested Password Lists/Folders
• Added an option to have all Folders collapsed by default when your first log into Passwordstate
• Hosts can now be set to Unmanaged or Deleted if they are no longer found in any Active Directory OUs as part of a Discovery Job
• When adding/editing a Remote Session Credential, you can now also search for password credentials by Title and Description fields
• You can no longer delete any inbuilt Host Type or Operating System records
• Discovery Job emails are now sent to users who have permissions to the Discovery Job, as opposed to any related Password Lists/Templates
• Made some changes to better catch error exceptions - previously they could have been blank
• Added additional Host Types, Operating Systems and redesigned the screen within the Administration area
• The Windows Account validation script no longer needs to use a Privileged Account credential to validate the password is correct
• You can no longer make changes to the contents of Inbuilt Reset & Validation Scripts
• When adding/editing Reset and Validation Scripts, it now records who the author is and date updated
• You no longer need to pick the Password Reset Scripts to associate with any Discovery Jobs
• You no longer have to have permissions to Inbuilt Password Reset scripts in order to associate it with a Password and Host record
• Added an option to force user to change password upon next log on when using Forms Based Authentication
• With the Hosts Discovery Job, you can now apply permissions to newly discovered Hosts with either User Accounts or Security Groups, instead of copying permissions from a Password List or Template
• Added an option to only look for certain named accounts when using the Local Administrator Discovery feature

• A background process was removing permissions from Folders if the folder had no nested Password Lists or Folders beneath it
• When using Form-Based Authentication and email/pin MFA, the user was being logged out immediately after authenticating
• User Accounts screen in Internet Explorer was showing contents center aligned when using small resolution displays
• Fixed some UI width issues for Internet Explorer when displaying HTML fieldsets on various screens
• Adding user accounts manually, or importing via csv file, was not allowing the UserID field to be of maximum length of 100 characters
• The 'Folder Options' button was showing for the Passwords Home screen, when it shouldn't have been
• If a Password Folder had no permissions applied to it, Security Administrator's couldn't fix permissions manually as all controls were disabled
• When searching for passwords in a Password List with multiple pages, you could not navigate to the next page
• Fixed an issue with Google Authenticator not prompting for access code when logging in as a different user
• Newly created Local Login Accounts where being logged out immediately after they logged in for the first time
• The Maintenance Renewal reminder link at the top of the screen could not find the renewal invoice in some cases
• SSL Redirection was only occurring during initial authentication to the Passwordstate web site
• Notes field text limit warning not showing when adding an initial 8000+ characters of text to a password record
• Made several changes to prevent Cross Site Scripting attacks (XSS) by users intentionally saving malformed data in the database
• Password List and Password Titles were missing within the body of the Permalink emails
• Fixed an issue where the Active Directory User Account synchronization process may not complete due to a 'String or binary data would be truncated' error
• The Mobile Client was expiring users sessions before the Idle Timeout setting was reached
• It was possible Windows Hosts weren't being discovered if the AD Attribute lastlogontimestamp had no value stored in it
• The Browser Extension fields could have been marked as mandatory fields when performing a CSV file import
• It was possible to receive a 'malformed querystring error' on certain screens if a relevant field had an & symbol in it
• When using API to create a new Password List, it could have apply the incorrect settings from a Template if also apply permissions from a Template
• Received an error about the querystring being malformed when adding a Password List and clicking on the 'Save and Add Another' button
• The 'Edit Password List Settings' menu option is no longer available for Private Password Lists within the Administration -> Password Lists screen
• When Impersonating a User in Passwordstate, we now set the default home page to 'Passwords Home', in case the user has a Private Password List set as their default
• When editing details for a Scheduled Report, the description of the report was not displayed unless you re-selected the report

Passwordstate 7.3 - Build 7316 (12th July 2015)

• Made a couple of changes for cleaning up Folder permissions when Password Lists are deleted, or moved around in the Navigation Tree
• Folder Options button is now visible to all users, regardless of their permissions on the folder
• When cloning permissions from one user to another, and moving Private Password Lists as well, audited data for this move is now visible on the Administration -> Auditing screen
• Resource Discovery Script now handles discovery of IIS Application Pools better, with improved error reporting
• If a Password record has associated Password Reset Tasks, you are now only allowed to move this type of record into different Password Lists, instead of Copying them
• Discovery Scripts have now been updated to ignore Managed Service Accounts (MSA)

• In build 7301 we introduced a bug were new Forms Based User Accounts could not initially authenticate, because they were being automatically logged out
• Permalinks we're working when using AD Integrated Authentication, and Anonymous Authentication for the site was enabled in IIS
• It was possible emails for Discovery Jobs, Password Resets and Password Validations where not being sent, due to the email category text having some words in uppercase
• Manual AD and SecurID Authentication, and Email Temp Pin Code Authentication, was logging user accounts out immediately after they authenticated
• When clicking on a Password permalink, it was not honouring any secondary authentication options applied to it's Password List
• In Build 7301 we broke the ability to use the Bulk Copy/Move Password feature in the Administration area
• When moving a password between Password Lists, this would change the value of a Permalink for the password
• Certain Scheduled Reports where not being sent if the user did not have a Security Administrator role
• It was possible to edit the details for a Discovery Job when you weren't granted access to do so

Passwordstate 7.3 - Build 7301 (3rd July 2015) 

• Added Windows 10 Host support for Discovery, Password Resets and Remote Session Launcher
• Made several changes to support the use of Managed Service Accounts for connecting to the database, instead of SQL Server Logins
• Searching of passwords can now be done with partial matches using multiple values as the search criteria
• Made changes to further protect against SQL Injection attacks, or Cross-Site Scripting (XSS) attacks
• Dropped the reference to InBuiltAccount for Privileged Account Credentials
• Renamed the 'Password Reset Options' tab on the Add and Edit Passwords screen to 'Schedule'
• When setting a user's account to expire, the date when the account is expiring is now added to the audit logs
• Added 'View Password Reset Tasks' menu to Host records on the Passwords Home page
• On the Add/Edit Password screen, various controls are now hidden if the Password field has not been selected to be used for the Password List

• When deleting a Password List or Folder, it was possible you may have seen a screen saying you no longer had access to this Password List or Folder
• Was getting a "WRM cannot process this request" for Windows Resource Discovery as some hosts required the use of the -IncludePortInSPN parameter for Invoke-Command
• Some of the Search boxes continued to show the search animation if the same value was searched more than once
• When you are redirected to a screen to create a Google Authenticator Secret Key on initial login, the barcode was not centered correctly on the screen when using a small resolution
• Add Password page was not being rendered correctly when clicking on the 'Save and Add Another' button while on the 'Notes' tab
• Trying to save any changes to the 'Scheduled Task' password reset script was causing a server 500 error, preventing saving of the record
• Fixed an issue where an error of "String or binary data would be truncated" may have occurred when trying to add records to the QueuedEmail table
• A password record which was enabled for Password Resets was still showing an icon indicating it was associated with a Host, if the Host was set to 'Ignored' in Passwordstate
• Password Reset Scripts should have had the option '-- Not Required --' for the Privileged Account you can associate with the script. This was missing for new installs of version 7.
• When reading a Self Destruct Message, a error about "remote certificate is invalid" was shown when using a Self-Signed Certificate
• When emailing a user a copy of the Google Authenticator Barcode, an Encryption error was displayed on this screen if the user did not have have Passwordstate open in the browser when they clicked on the navigation link in the email
• Resetting of Scheduled Task passwords was failing if the Task had a single quote in the name
• When a Password List has the option "Hide Passwords from users", it was still possible to see the password value by using the 'View & Compare History of Changes" menu option
• Updated the Linux Password Reset script so that it will reset passwords correctly on RedHat Operating Systems
• The Host Discovery process was discovery Hosts multiple times if the Host record did not have a dnshostname attribute

Passwordstate 7.2 - Build 7277 (30th May 2015)

• When navigating to a Password List from the Administration -> Password Lists page, it was saving the Password List as the one to return to when you logged in to Passwordstate
• Fixed an issue introduced in Build 7273 where it was not possible to save a new password record if the Account Type field was left blank
• Fixed an issue where it was possible for Security Admins to navigate to Private Password Lists from within the Administration area
• Fixed a crash when filtering the Password List Navigation tree when searching with a single quote

Passwordstate 7.2 - Build 7273 (26th May 2015) 

• Added support for SafeNet Two-Factor Authentication for the Web UI and Mobile Client

• Added an option where you can return to the last Password List you had shown on your screen, once you have been logged out of Passwordstate
• Added the option to brand the Logo and Page Titles for the Mobile Client
• Updated licensing features to support the new Global license option
• Added reporting options to export a list of Password Reset Tasks for an entire Password List, or an individual password record
• Added a new option to allow changing of a Password Lists image when copying settings from another Password List or Template
• Added an option to prevent users from unticking the option 'Link this Password List to the selected Template' when set via a User Account Policy
• The option to link a new Active Directory account to an existing one in another Password List now requires you to know the password for the account, and the linking happens when hitting the Save button
• Made some changes to the Remote Session Launcher installer to try and overcome NTFS permission issues on files when installing as a non administrator
• The list of Domains in the dropdown list on Authentication windows will now only return unique domain entries if duplicate domain information has been added to Passwordstate
• When using the 'Export All Passwords' feature, any Password Lists configured to support the Browser Extension will now have the values of the Browser Extension fields exported as well
• Added a new option to enforce a two-step authentication process when one of the two-factor options was selected and only Windows Authentication for the site in IIS is enabled
• Browser Form Fields are now exported and can be re-imported for Password Lists configured to use the URL field

• Fixed an issue where selecting an additional Authentication Option for a Password List and clicking the 'Save and Close' button, was causing the site to be displayed in an iframe
• Editing a user's settings on the screen Administration -> User Accounts, was clearing the Email Address field for where to send a Temporary Pin Code for authentication
• Excessive Activity email notification was reporting on records in Private Password Lists
• Some Exporting of Password features were exporting the ScriptID field when they shouldn't have been
• On the Passwords Home page, "user" auditing data in the graph could have been incorrect on the timeline if some months had zero data to report
• When the System Setting for preventing exporting passwords from Shared Lists was set, it was still possible to select this option on the Edit Password List Settings screen - exporting was disabled though
• Custom page background color was not being displayed when logged out due to idle timeout being reached

Passwordstate 7.2 - Build 7253 (12th May 2015) 

• Added an option to convert Private Password Lists into Shared ones
• Added the ability to delete or enable/disable User Accounts in bulk
• Added a new Password Reset script for resetting the Enable Secret on Cisco devices
• Made some changes to the Resource Discovery PowerShell script to exclude resources where the UserName field could have been returned blank
• Made some improvements to the Passwordstate Windows Service so that newly uploaded images to the database can still be written to disk when using an Active/Active High Availability configuration
• The selected Security Administrator roles are now added to auditing data when adding Security Admins, or updating their roles

• Fixed a 'Cannot have multiple items selected' error when browsing to an Active Directory login page, when the same domain had been added to Passwordstate more than once
• Access the page Administration -> Emergency Access was sending an email alert indicating the Login Page was being accessed
• Under certain conditions, it was possible to bypass a two-factor authentication option for a user if you did a Run-As in your browser, and then changing the account you are authenticating with
• Was receiving a 'Cannot find a column with UniqueName Password' when Impersonating another users account, and the Recent Passwords panel on the Home Page was displayed

Passwordstate 7.2 - Build 7243 (6th May 2015) 

• With the changes in the performance of the AD Synchronization process, please ensure the LDAP Querystring for any domains on the screen Administration -> Active Directory Domains are pointing to the root of your domain so User Accounts and Security Groups can be found

• Added support for resetting passwords on VMware ESXi accounts
• Added support for resetting passwords on HP iLO accounts
• Made significant speed improvements to the Active Directory Security Group synchronization process
• Local Login Accounts, when using AD Authentication option, can now also use all the other authentication options built into Passwordstate
• Added an option on the Manual AD Authentication screens to display a list of Domains which can be selected, instead of needing to type the domain prefix manually
• Additional Authentication options are now available when you enable Anonymous authentication for the site in IIS - when using the AD Integrated version
• Added a new AD Account and Security Group debug mode, and screen for viewing debug events
• When using the AD Integrated version of Passwordstate, if a user tries to access the site and they don't have a registered account in Passwordstate, they will be redirected to the Manual AD login page so they can login with a different account
• Made changes to the resource Discovery PowerShell script to support discovery of Scheduled Tasks nested in Folders
• Updated the error capturing in the Scheduled Task password reset PowerShell script to better report on whether the new password or privileged account password was incorrect
• Added an email alert when Security Administrators export all passwords from the Administration area
• Made some changes to the Passwordstate Windows Service to overcome the intermittent issue of "Unknown error 0x80005008" and security groups being removed when the Active Directory Synchronization process runs
• Made improvements to memory utilisation of the Passwordstate Windows Service when synchronizing many Active Directory User Accounts and Security Groups

• Made some changes to the Resource Discovery PowerShell script as Hosts without the option to execute PowerShell scripts enabled may have returned blank data
• The Discovery PowerShell script was returning blank data if no Windows Services using accounts as their identity on Hosts with PowerShell 2 installed
• Local Login Account authentication audit events where being recorded as Active Directory authentication attempts
• When using Forms Based and SecurID Two-Factor Authentication, the UserID value was not being added to the auditing data
• Duo Push Authentication was not working when the use of local Proxy Servers was required
• Was receiving a 'Object reference not set to an instance of an object' error when trying to apply permissions for which user's were allowed to create API Keys for Password Lists
• Fixed a 'String or binary data would be truncated' error if saving a Password List when the guide has more than 8000 characters of text specified

Passwordstate 7.2 - Build 7223 (18th April 2015) 

• With the upgrading of ZeroClipboard for improved security, you may need to clear your browser cache for the 'Copy to Clipboard' feature to work - either clear it through the browser menus, or hold the Shift key while you refresh the screen in Passwordstate

• Added the ability to add, delete and search for Hosts via the API
• Added a separate 'Allowed IP Ranges' feature for the API, so this can be locked down to different sets of trusted networks if required
• Added a separate 'Allowed IP Ranges' feature for the Emergency Access Login page, so this can be locked down to different sets of trusted networks if required
• Added an 'Outage Notification' Email Template and button so you can inform users of planned outages for Passwordstate
• Added an option to email Security Administrators when a Password List is deleted
• Added a new System Setting option for displaying the Account Types label next to the image in each of the Password Grids
• Added the ability to view SecurityGroupID values on the screen Administration -> Security Groups
• Added a new Password Generator API Key (System Settings screen) which now must be used for generator random passwords via the API
• The automatic configuration of the Chrome Browser Extension no longer has a dependency on the Base URL field being accurate on the screen Administration -> System Settings
• The Passwordstate Windows Service no longer relies on a registry key to determine the path to the web.config file
• Updated to the latest version of ZeroClipboard for improved security - version 2.2.0

• The SuperPutty configuration file had an incorrect path as to where it should save it's settings
• The Allowed IP Ranges feature may have prevented the use of the Chrome Browser Extension, depending on what network settings were specified
• Fixed various Cross-site scripting (XSS) vulnerabilities as the result of an application penetration test
• The 'Save and Add Another' button on the screen Administration -> Password Lists was not redirecting to the Add Password List page
• Fixed an issue with the 'Aged Password Report' where it may not have been returning data for all password records
• Using Security Groups to specify which users are allowed to use the Chrome Browser Extension was not working - only when specifying permissions based on User Accounts
• Fixed a bug for the Host Discovery Job where the Tag field may have repeated the value of 'No longer found in' if the Host was moved to a different OU
• When the Passwordstate Windows Service 're-enabled' a user's Active Directory account, it was not first checking if there were any available licenses to do so
• The verification of the backup account used prior to upgrades occurring was failing if customers where using the Forms-Based authentication version of Passwordstate
• Fixed an issue where the standard horizontal popup message at the bottom of the screen was not bottom justified when using the new Vertical menu system
• If a Password List's options 'Hide Passwords from Users' and 'User Must Specify a Reason' were set, the Password column in the Home Page Search Passwords grid was showing two sets of data
• The verification of the backup account used prior to upgrades occurring was failing if a local account was being used as opposed as a domain account

Passwordstate 7.2 - Build 7200 (28th March 2015)

• Made significant performance improvements when automatic applying of permissions to upper-level folders needed to occur
• Made some performance improvements when sending the Delta Permissions Report email
• The Host Discovery process no longer checks for matches on HostType equals 'Windows'
• The 'Link to Password' field for Remote Session Credentials is now hidden a user has not been given permissions to the credential
• When using Forms Based Authentication, if the 'Denied Access Altogether' option is selected for untrusted networks, the user is now denied on initial login, not after they first authenticate
• The Emergency Access login page will now return a 404 Error page if accessed outside of the 'Allowed IP Ranges' settings

• Reverted to previous version of Telerik ASP.NET Controls as the latest version was preventing pasting data from the clipboard into the Notes field for password records
• After upgrading to Build 7185, the High Availability instance was reporting an UPDATE error for the UserAccounts table when trying to update the LastLoginDate field
• Fixed an issue where the Passwordstate Windows Service could have caused high SQL Server CPU usage when sending emails for Password Lists which were nested deep in a Folder structure
• The Passwordstate Windows Service was logging audit records as 'Access Updated' when it should have been 'Access Removed'
• When only having a single Zone on the Passwords Home Page, the grid was not filling the width of the screen
• When using Duo Push Authentication, it was possible a blank alert may have shown on the screen after authenticating
• Pending password resets were visible to users who weren't granted access to the relevant hosts
• The 'Allowed IP Ranges' authentication option, when outside the trusted networks, was only working if Passthrough Authentication was selected on the System Settings -> Authentication Options tab
• Was receiving a 500 Internal Server Error when viewing a Self Destruct Message, only if the email wasn't sent from Passwordstate i.e. the copy to clipboard icon was used instead

Passwordstate 7.1 - Build 7185 (19th March 2015) 

• To configure the Chrome Browser Extension now, all you need to do is browse to the Passwordstate web site and it will configure itself - no more specifying the URL, UserID and API Key
• Added two auto logout timers for the Chrome Browser Extension - when the user closes their browser, or when the browser has been idle for (x) minutes
• Made some changes to the Chrome Browser Extension to eliminate the need to upgrade Passwordstate every time the Extension is updated
• Security Admins can now choose which Users are allowed to save new web site logins with the Browser Extension
• Security Administrators or Users can now choose which URLs are ignored by the Browser Extension, preventing saving of new logins for the given URLs
• Added an option where 'View' permissions to a Password List can create new password records
• Added 'Last Login Date' field on the screen Administration -> User Accounts
• Updated to the latest build of Telerik's ASP.NET Controls
• When sending Auditing data to a syslog server, the client IP Address is appended to the end of the syslog description field
• Added a popup alert if there are any Failed Password Reset Tasks on the screen Hosts -> Pending Password Resets which may require your attention
• Added additional error checking to 'Validate Password for Windows Account' PowerShell script, to ensure a Privileged Account Credential has been associated with it
• When applying permissions to a Privileged Account Credential, a check is first made to ensure you have specified the UserName and Password for the account
• Added some checks on the System Settings page to check AuthAnvil and Duo Push settings are specified before selecting one of these authentication methods
• Added a new System Setting option to prevent users from exporting passwords from Shared Password Lists
• Made some changes to the Remote Session Launcher Utility so the 'Remember my credentials' option is not selected for RDP sessions
• Added an option to pause for (x) seconds between synchronizing Active Directory Security Groups
• Made some changes to the Self Destruct Message feature, where the message can be viewed (x) number of times, and an email is sent to the user who generated the message on it being viewed
• Added a new audit events for requesting,denying and approving access to Passwords and Password Lists
• Added the option to add multiple Security Groups at once
• When using the AD Authenticated version of Passwordstate, users outside of your internal network can now view Self Destruct Messages
• Added a System Setting to have the default option of automatically linking or not new Password Lists to a Template if copying of settings from the Template is selected
• Included UltraVNC VNCViewer 1.2.0.5 as the latest VNC client for the Remote Session Launcher utility
• Added a check to ensure duplicate Bad Passwords can't be added on the screen Administration -> Bad Passwords
• Added a filtering header to certain grids in the Administration area to allow easier searching
• Increased the Field Length for filtering Hosts on the Remote Session Credentials screen
• Browser Extension and Remote Session Launcher now has their own tabs on the Preferences screen
• Masked and disabled some data on the Preferences screen when a Security Admin is impersonating a user's account
• The Temporary Pin Code Email Address is now auto-populated when new accounts are added to Passwordstate
• When a password record is of type 'Active Directory', then the UserName label will now show Domain\UserName
• Increased the Field Length for filtering Hosts on two of the Discovery Jobs screens
• Provided Templates for Permalink Text and Self Destruct Message Text
• When using the Remote Session Launcher, if the password being used has the 'Provide a Reason' setting, then you must do this before logging in with these credentials
• When saving new Passwords with the Chrome Browser Extension, the Password Lists are now sorted alphabetically by the TreePath
• Added SuperPutty as the default SSH client for the Remote Session Launcher utility
• Added an icon on the Edit Password screen to launch a new browser tab for the URL field
• Password Reset script for Linux has been updated to include conditional processing for different Operating System types
• Added OperatingSystem variable for Password Reset scripts so conditional processing in the script is possible for different Operating Systems
• On the Backup and Upgrade Settings screen, add a button to validate the domain account being used has a valid password
• Added a new System Setting option to hide the ability to manage permissions manually on folders
• Added the ability to apply permissions to Remote Session Credentials, and share the credentials with other users
• When performing an In-Place Upgrade, we now validate the account/password being used for the backups is still valid and not blank
• When adding an Active Directory account password, if the account is found to already exist in Passwordstate, you are given the option of linking the two

• For the 'Bulk Permissions for Individual Passwords' feature, an error message was displayed if you were not a Security Administrator of Passwordstate
• Adding a Host Discovery Job record may have resulted in a JavaScript error after adding an OU, preventing certain clicking functions on the screen from working
• Renamed the UserID for the Passwordstate Windows Service from WindowService to WindowsService
• Added some checks to ensure either the Alphanumerics or Word Phrased options where selected for Password Generators, before you can generate passwords or save policy records
• Administration -> Auditing screen may have returned zero results when filter on Audit Activities, as the Activity Type was automatically being deselected
• Was receiving a "'Date2' cannot be converted to type 'Date'" error when impersonating a user when using Forms-Based Authentication
• Self Destruct Message may not have added Auditing data to reflect which Password record was contained within the message
• Fixed an issue where Password Lists were not showing on the screen Administration -> Password Lists, if the TreePath field value was NULL
• Some session variables weren't being refreshed when using Form-Based Authentication, and saving some changes to your Preferences screen - required you to log back in to pickup changes
• Made some changes to the Export All Passwords feature to overcome the report crashing if values like 5,4,3 were stored in a field - these we're trying to be interpreted as date fields
• Any selected settings on the 'Password List Options' tab for a User Account Policy, were not highlighted Red showing the setting was in use
• If connecting to en existing empty database during initial install, the database connection test would fail in the database name had a dash in it i.e. '-'
• The 'Spell Password' icon was showing in to top toolbar when logged in as the Emergency Access account
• Fixed an issue where it was possible to bypass the ScramblePad authentication login if your Pin Number was currently blank
• Fixed some Passwords Home page UI issues when using a very small resolution
• Fixed an issue with Google Authenticator where we query if the User Account exists now before we present the screen to create the Secret Key QR code
• Fixed an issue where the correct authentication option for an account was not presented if the UserID was changed on the initial login screen
• Error capture page for AD User or Security Group querying was not reporting the correct AD attributes
• Fixed an issue where popup screens would not resize correctly when using small resolution monitors
• Hosts & Password Resets screen in Administration area was showing black border around icons when using Internet Explorer 9

Passwordstate 7.1 - Build 7123 (30th January 2015)

• Increased the default TimeOut value when trying to send emails

• During a new install, the initial user account was not being created when using Forms Based Authentication, preventing logging into Passwordstate
• Description for 'High Availability Site Accessed' was incorrect

Passwordstate 7.1 - Build 7120 (21st January 2015) 

• Added support for changing Com+ Component passwords

• The Remote Session Launcher utility can now be used by multiple users on the same computer - requires reinstall of Utility
• The 'Expiring Passwords Report' now has an option to only report on expiring passwords in the future, instead of both with the past
• Added a System Setting option to show the Build Number at the top of the screen for All Users, or just Security Administrators
• Limited the number of rows for the 'Recent Activity' grid on the Password List pages to improve performance
• Added the ability to view/change User Email Notifications via the screen Administration -> User Accounts
• Added a 'Maximum Records' textbox to Auditing screens to limit the number of records returned - to help improve performance
• Added the Remote Session Launcher instructions to the main Help menu

• The Email Notification Groups feature was unreliable and confusing depending on the settings
• Reset Windows Service Password PowerShell script may not have reported the relevant Host name if the Windows Service could not be found
• The 'Run Discovery Job Now' feature was setting the job schedule incorrectly if the current time was 59 minutes
• Fixed a database timeout issue when navigating to the page Administration -> Auditing, if there were an excessive number of records to return
• Fixed a database time-out error when trying to upgrade to version 7
• The 'Toggle All Password List Visibility' menu option wasn't working if accessed when the Passwords menu was manually expanded on the screen
• The Export All Passwords feature was giving a 'Object reference not set to an instance' error if not options where selected on the screen before running the report

Passwordstate 7.1 - Build 7105 (12th January 2015) 

• Added a Simulation Mode for each of the three Discovery features
• Added a Scheduled Password Validation Report to check if the passwords stored in Passwordstate match what is currently in use on the various hosts

• Added the option to disable a User's account when they no longer belong to any Active Directory security groups in Passwordstate
• Added an email alert for Security Administrators if the automatic AD Sync Process was still running the next time the scheduled was met - could indicate an issue
• Added an option to convert a Private Password List into a Shared one
• Added some popup guidance windows to each of the 'Discovery' feature screens if the prerequisites haven't been met for adding discovery records
• Added various System Setting options for showing, hiding or masking passwords on the Compare Password History screen, and for disabling the Actions menu item for this screen
• Made some changes so the URL Mismatch popup window no longer appears
• Added a new option where you can insert your own JavaScript code into the main default.aspx page - useful for your own usage tracking and reporting
• Added the option to CC other users when emailing Scheduled Reports
• Upgrades now check if SQL Transactional Replication is currently in place before an upgrade commences. If so, reminds the user that it must first be deleted if there are any schema changes
• Added a new Password Validation script for Active Directory accounts, so it could be used in conjunction with the new scheduled report
• Added the option to retrieve documents via the API
• Added the ability to link a Password record with a Password Validation script
• Using the 'Remote Session Launcher with these Credentials' Passwords menu item now allows you to search for hosts using the 'Tag' field
• Added an option to Time-Based Access to password records to reset the password when the permissions were removed

• The Spell Out Password feature may not have displayed the whole password on the screen correctly if the password value contained HTML tags
• The use of Password Validation Scripts was too restrictive when used in conjuction with custom Password Reset Scripts
• The 'Password Reset' option for passwords records was not being copied across to other Password Lists when using the Cop/Move feature

Passwordstate 7.0 - Build 7086 (21st December 2014)

• Chrome Browser Extension has improved site awareness when clicking through multiple open tabs
• Added the button 'Toggle ID Column Visibility' on the screen Administration -> Custom Images, as this is helpful for the API

• The 'Authentication Credentials' email template was missing for new installs of version 7
• Fixed an issue where some customers were seeing duplicate records on the SecurityGroupsMembership table
• Fixed a 'primary key constraint' issue when the Passwordstate Windows Service tried to add a new user as the result of a security group synchronization
• One-Time Access for an individual password was not executing any associated Password Reset tasks for non Active Directory accounts
• When manually launching a Remote Session from a specific password record, the Tag name was being passed with the Host Name prevent the remote session from working
• Creating a password via the API was not inheriting password reset features from the Password List the record was being added to
• A 'Record Not Found' error was displayed when trying to add a Host Discovery job when no Active Directory Domains where added to Passwordstate

Passwordstate 7.0 - Build 7077 (12th December 2014) 

• Submitted the Chrome Browser Extension to the Google Play store
• Added a 'Last Access vs Updated Report' for User Accounts to report on which passwords they have access to, and whether they have accessed them since the password was last updated
• Added a new option which allows Security Administrators to grant themselves access to Password Lists via the Administration area
• Provided the option where a User Preference or User Account Policy for copying settings/permissions from a Template to newly created Password Lists could be overridden
• Added a new 'Inactivity Time Out' setting for clients whose IP Address was not in the Allowed IP Ranges
• Selecting the reports 'All Passwords Report' or 'All Password History Report' will now add one 'Password Viewed' record for each password exported
• Added additional error checking to PowerShell scripts to detect if a Privileged Account Credential has been associated with the script

• Clicking on the Default Password Generator policy after a fresh install of version 7 was giving a 'DBNull to Boolean' error
• 'Logon' button for Manual AD and Duo Push Authentication option was wrapped to the next line in Internet Explorer
• The List Administrator's Actions dropdown list may not have shown it's menu items if the list was positioned at the very bottom of the page
• Under certain conditions, the authentication option chosen for client IP Addresses outside of the Allowed IP Ranges may have been ignored
• Password Reset Script for Cisco & Linux accounts may have complained about 'Cannot access a disposed object' even after a successful reset
• Using the 'Manual Credentials for Remote Session Launch' menu item was not working for domain accounts, only local accounts
• The feature to restore default script settings for Oracle password validation and resets was not working
• Any additional Authentication steps for a Password List where being ignored if the Password List was flagged as a favorite, and you navigated to it from the Passwords Home page

Passwordstate 7.0 Beta 6 - Build 7062 (27th November 2014)

• Some customers may have experienced a data integrity issue when clicking on Password Lists, when permissions were applied via Security Groups

Passwordstate 7.0 Beta 5 - Build 7061 (25th November 2014)

• Fixed an issue where the domain portion of a Users ID may have been detected incorrectly when synchronizing security groups - happened if the user accounts where in a different domain to that of the security group
• Remote Session Launcher for RDP protocol was not allowing authentication using local accounts - only domain ones

Passwordstate 7.0 Beta 4 - Build 7059 (22nd November 2014) 

• You can now perform a Remote Session Launch from the Actions menu for a password record, and manually specify the Host and remote session type connection
• Added a 'Tag' field to Hosts records, so you can categorise them, search them, or create Discovery Job records based on them
• Discovery Jobs for Hosts can now populate the Tag field with the OU the Host belongs to
• You can now compose a Self Destruct Message for individual password records
• For Host Discovery Jobs, added the option to Lookup the FQDN for OUs and Containers
• The Active Directory OUs for Host Discovery Jobs can now have the option to either recurse nested OUs, or not
• Added 'View Password Reset History' for password records to view the history or any reset tasks, and the value of passwords for them
• The Search Textbox in the toolbar at the top of the page will now search through all passwords you have access to, regardless of what Password List you may have selected
• When copying/moving passwords between Password List, the filter for Password Lists now behaves the same in the main navigation tree
• Added Auditing data for Self Destruct Messages being sent and read
• Added a new option to either show all Hosts the user has access to on the Passwords Home and Remote Session Launcher pages, or to instead make them search for them
• Added an option to hide the setting 'Show all Hosts added to Passwordstate' on the Hosts and Resources screen
• 'Actions' menu items for Password records have now been sorted alphabetically
• Increased the size of the DatabasePortNumber and RemoteConnectionPortNumber for Hosts records
• Added some additional error checking to Password Reset Scripts to detect if PowerShell 3 was not installed on the Passwordstate web server
• For Forms Based Authentication, provided an option where users don't need to regularly change their login password
• For Discovery Jobs, added more granular control for the schedule in which to execute the job

• Fixed an issue where the domain portion of a Users ID may have been detected incorrectly when synchronizing security groups - happened if the user accounts where in a different domain to that of the security group
• Fixed an issue where potentially a 'Could not load Telerik.Web.UI assembly' error could occur for certain Password Lists after upgrading to version 7
• Recent Hosts grid could have shown Hosts which were set to be ignored
• For 'Database' Server hosts, the Port Number may not have saved successfully
• Made some internal changes for the Chrome Browser Authentication Key to see if it resolves an issue when using Russian language settings on the web server
• Clicking on a Host could have resulted in a 'String to Boolean is invalid' error if the Host was added via a Discovery Job
• The Mobile Client may have reported the Passwordstate web site was in need of an upgrade - issue introduced in Build 7019
• Fixed error 'Method invocation failed because of method named Gettype' when discovering Local Administrator accounts
• Cloning a Folder was causing a 'Operator = is not defined for type DBNull' when clicking on a Password List

Passwordstate 7.0 Beta 3 - Build 7033 (9th November 2014) 

• Multiple Active Directory OUs can now be associated with a Host Discovery Job
• The Password Generator feature in the top toolbar can now be used to search passwords on the Home Page, Folders and Password Lists
• Chrome Browser Extension now highlights the toolbar icon with a different color if multiple logins for a web site is detected - allowing you to chose which credentials to use
• If no new records are found when a Discovery Jobs executes, this will be reflected in the email sent instead of an empty table
• Added additional error checking for incorrectly specified Active Directory OUs in Discovery Jobs
• Made the 'Login Attempt Succeeded" audit message for the Browser Extension a bit more obvious it was for authenticating to the API

• Host Name was missing from auditing data when apply permissions to the Host
• Could not apply/remove permissions to Privileged Account Credentials for 'All Users and Security Groups'
• When clicking on the 'Test Permissions' button on the Backup Settings page, the progress indicator was not showing if the option to not perform backups before In-Place Upgrades was checked
• When using Forms-Based Authentication option, the 'Security Administrator' role was not being applied to new Security Administrator accounts, even if it was selected
• Fixed a couple of UI issues when using the In-Place Upgrade feature
• The new PasswordstateApps application pool could have selected the .NET Framework 2, instead of 4
• Fixed an issue where some customers were getting a blank page or server internal error when trying to use the Self-Destruct Message feature
• Fixed a NullReferenceException error when clicking on the 'Screen Options' button for a Password List which did not have the Username field associated with it

Passwordstate 7.0 Beta 2 - Build 7019 (5th November 2014) 

• Added support for resetting Oracle account passwords

• Duo Push authentication will now automatically log you in once you have accepted the Push Notification
• Added the option to make the Duo Username read-only on the authentication screen
• Chrome Browser Extension will now show you the Tree Path for a Password List when saving new records
• Chrome browser extension will now save the Title of a page into the Description field
• Mobile Client now reports generic login failure messages on the screen for improved security
• Have now made it easier to configure the browsers to support the Custom Protocols needed for the Remote Session Launcher utility
• The PSLauncher.exe file has now been digitally signed using a www.digicert.com Code Signing Certificate
• All Passwordstate .exe installer files have now been digitally signed using a www.digicert.com Code Signing Certificate
• Made the naming of buttons and menu items for linking of Passwords, Hosts and Reset Scripts to be more consistent and logical
• Added some additional checks to ensure a PowerShell script was selected when linking Hosts -> Scripts -> Passwords
• Added some buttons on the Reset and Validation Scripts screens to easily navigate to the 'Community Scripts' section of our forum
• Added Help menu, build information, and a few UI improvements to the Chrome Browser Extension

• Fixed an issue on 32bit servers for a System.Data.SQLite error
• When selected users for the Handshake approval process for new permissions applied to Password Lists via the Administration page, it was possible your own account was being disabled as one of the approvers
• Clicking on the 'Add Linked Resource' button for a Host record would produce an 'Object reference not set to an instance of an object' error
• Fixed a bug where it was possible to experience a database timeout error when upgrading from Build 5458 or earlier
• Remote Session Launcher feature may not have been working if execution of PowerShell scripts on the user's desktop was disabled
• The Remote Session Launcher popup window in the browser may not have been successfully closed once remote session was initiated

Passwordstate 7.0 Beta 1 - Build 7000 (25th October 2014) 

• New Chrome Browser extension for form filling web sites
• Added support for changing passwords on various remote Windows systems - Windows Services, IIS Application Pools, Scheduled Tasks and Local Account Passwords
• Added support for changing passwords on Microsoft SQL and MySQL Servers
• Added support for changing passwords on various remote Unix and Network hosts
• You can now automatically discover Windows Hosts on your network, Local Administrator Accounts, and Windows Services, IIS Application Pools and Scheduled Tasks which are using accounts as their identity
• Added the ability to validate Passwords are correct for Local Windows Accounts, MS SQL & MySQL Accounts, Linux and Network Hosts
• Added support for creating your own PowerShell scripts to execute on a password change event
• Added Duo Push Two-Factor Authentication support
• Remote Session Launcher for automatically logging into hosts via RDP, SSH, Telnet or VNC
• Added a new Vertical Navigation Menu, in addition to the Horizontal one. The navigation menu type can now be set system wide, users can choose their own, or it can be set via User Account Policy
• Passwordstate can now be themed with different colors
• New Dashboard Layout for Password Home and Folder pages - allows you to choose which panels to display, and where
• New Favorite Password Lists feature, whereby favorites can be easily filtered in the Navigation Tree
• New "Self Destruct Message" feature for sending time-bombed messages to other users

• Generic Fields can now be configured as URL fields as well
• Added the ability to encrypt any one of the Generic Fields you can select for Password Lists
• Added the feature to spell out passwords in the format of tango echo yankee foxtrot, etc
• Add Google Authenticator and Duo Push two-factor authentication support for the mobile client
• Added option to Password Lists to ensure passwords are not visible or can be copied to clipboard
• Added option to force users to use the Password Generator associated with a Password List
• Updated User Account Policy settings to allow new Password Lists to be based on an existing Template - for both Shared and Private Password Lists
• Users password, using Forms based authentication, will now expire after a set period, and password reuse is prohibited
• Added various Folder and Password List methods to the API
• It's now possible to send specific email notifications to a generic email address
• When managing Password permissions from the Administration area, you can no longer apply/modify permissions for your own account, or for any Security Groups you're a member of
• Users can no longer modify their own Security Administrator roles, or add roles for themself
• Removed spaces around back slash from the TreePath value for all Password Lists
• List Administrators Actions dropdown list now has menu items sorted alphabetically
• System Settings tabs have now been ordered alphabetically
• Added Department and Office fields for User Accounts, with Active Directory Synchronization updating these fields automatically
• Each of the main Navigation Menus can now be hidden from users, instead of just disabled. We've also added controlling all menus items
• Scheduled Reports now have an option to not send the report if there is no data to report against
• The API now supports deleting password records
• Permalinks for Password Folders has now been added
• Added the option to exclude performing a backup prior to any In-Place Upgrades taking place
• Added the option to export all Shared passwords into a KeePass compatible csv file
• Email Temporary Pin Code authentication option has now been enabled when Anonymous Authentication in IIS has been enabled for the AD Integrated authentication version
• Active Directory Authentication for the Mobile Client has now been moved to the API so a dedicated server hosting the Mobile Client web site does not need to be joined to the domain
• Modify rights for a Password List can now access additional menu options in the List Administrator Actions dropdown list
• Added an option to display a popup window for a Password List's Guide every time users access the Password List
• Any System Settings for cloning settings and permissions from Templates to new Password Lists have now been moved to User Account Policies
• One Time Access for permissions can now synchronize passwords for Active Directory Accounts, and initiate any associated Password Reset Tasks
• Added a System Wide option to prevent the uploading of documents into Passwordstate
• Passwordstate can now be used without an email server if needed, with certain features being disabled
• Added the ability to generate random passwords based on a pattern of alphanumeric characters
• 'Password Synchronization' audit events have been renamed to 'Password Reset'
• Filtering in the Navigation Tree can now also filter on Folders names
• Added additional error capturing to the API for HttpStatusCode of InternalServerError (500)
• Improved performance of page loads by removing the count total for various menu items under the Grid's Actions menu
• Provided greater detail in the AD Synchronization Report
• Screen Options for Password Lists and Folders has now been changed to a popup window
• Password Generator Icon within the Search Textboxes on each page has now been moved to the top header panel on the main page
• When deleting a Password List, the confirmation popup now tells you what Password List you have selected to delete
• You can now exclude specific letters and numbers in the Password Generator results
• When using IE, the clipboard clearing timer is reset if a password is again copied to the clipboard why the timer was active
• Email alerts from the High Availability instance of Passwordstate are now queued, instead of being sent real-time
• High Availability instance of Passwordstate now adds its own auditing data, which can also be reported against
• Added the option for various API calls to exclude the Password field from being returned, resulting in to Auditing records being added
• Added the ability to see all Private Password Lists on the screen Administration -> Password Lists. Only feature available with this is deleting the Password List
• Moved all 'Administration' navigation menu items to their own Navigation Tree
• Allow different Privileged Account Credentials for different AD Domains for synchronizing password changes
• API and Mobile Client web sites now have their own IIS Application Pool
• Added additional Pie Chart color options for Password pages
• Auditing Graphs are now available to non Security Administrators as well
• Synchronizing of AD user accounts and security groups will no longer execute if an existing process is running
• Installer now provides the option to add a firewall exception for the selected web site port
• New Security Administrator Report
• API Key can now be included in the header request instead of the URL
• Once the initial Enterprise license trial expires, you're now given an option to extend the trial instead of just disabling or deleting any excess user accounts
• Added a check prior to starting any upgrades to ensure the required Session Variables hadn't expired due to the page being left open too long

• Some Auditing Activities for various 'platforms' was not being shown correctly for Scheduled Reports
• Mobile client was ignoring User Account Policy settings
• Auth Anvil authentication was not working when Anonymous Authentication in IIS was selected - when using AD Integrated authentication
• When the option to prevent exporting of all Passwords in a Password List was selected, the Bulk Update features was not disabled
• User Account Policy conflict check wasn't checking for the last user in the query
• API would not allow calls to Private Password Lists when using the API Key from the Private Password List
• HTTPS redirection wasn't working for various authentication options until after the user was authenticated
• Under certain circumstances, a Scheduled Report of type 'Custom Audit Report' may not save the correct Audit Activity
• Under certain conditions, a Pending Access Request popup reminder window may have shown when you didn't have the required Security Administrator role
• ScramblePad Authentication option was allowing users to log in when the initial Pin Number wasn't set
• When a Generic Field of type Password was displayed in the grid and the field was blank, it was preventing copying the password field value to the clipboard
• Under certain conditions the Password Generator may create duplicate passwords when generating large quantities of them
• Enumerated Permissions Report was showing passwords in the recycle bin
• When using Forms-Based Authentication, the ability to manage Security Administrator roles was disabled/hidden
• Filtering in the Passwords Navigation Tree was not working if Password Lists were nested beneath other Password Lists
• Searching from the Passwords Home page may have returned zero results if the previous search was was displaying a different Page Index in the grid
• Could not manually add an AD Security Group with the same name on different domains
• When upgrading from version 5, it was possible to receive an error about dropping a column in the TreeViewState table
• When upgrading from Builds prior to 5458, it was possibly to receive an error about the Expanded field in the TreeViewState table not being allowed NULL values
• The initial resetting of a password for a forms-based User Account was allowing the Confirm Password to be different
• Could not close the 'View Password' window when viewing from the Auditing menu at the bottom of the screen
• Edit Password screen was not sizing correctly if the descriptive text at the top of the screen was too long.
• Notes field had no scrollbar for large content
• Fixed a UI issue where an icon was shifting on the Add Password List Permissions page when you clicked on a User or Security Group