Passwordstate Changelog

Passwordstate Change Log

Passwordstate 8.9 - Build 8951 (12th July 2020)

Updated Features

Provided a more generic message if an invalid user account is specified during the use of the Password Reset Portal
Increased the SQL Timeout limit when querying data for performing bulk password resets based, on a user's auditing activity
Made some changes to Scheduled Reports which are configured to repeat throughout the day, to ensure the schedule is updated even though there could have been exceptions sending emails for previous reports

Fixed a connection issue with the Remote Session Launchers if there were certain special characters in the password of an account used to connect to the remote host.
Fixed an issue introduced in build 8942 where password records in OTP Password Lists were not rendering on the screen correctly, or responsive to mouse clicks
Uploaded new Microsoft Edge extension build 8943 to fix issue where an update to Edge caused saving of passwords to fail
Fixed an issue where the files Telerik.Windows.Zip.dll and Ionic.Zip.dll were missing from the backup zip file
Linked password records where showing in the Browser Extensions when the URL field was not selected in one of the linked Password Lists
Fixed an exception when trying to send an email notification for permissions being changes on a Password List for a Security Group which had no members in it

Passwordstate 8.9 - Build 8942 (23rd June 2020)

Updated Features

Updated to Telerik UI for ASP.NET version 2020.2.617
Updated jQuery to version 3.5.1 for Passwordstate and all additional modules
During the AD Sync Process for Password Reset Portal user accounts, the user's email address for the Email Temporary Pin Code verification policy will now update if the selected attribute in AD is updated
Added additional Timer and Debugging into the Passwordstate Windows Service for password reset and scheduling processes
Fixed all installers to ensure only Modify NTFS permissions are applied the file system

Fixed an issue where a duplication configuration line in the file gateway.conf was been repeatedly added
Fixed an issue where expiry date was not automatically being set when saving and adding a password, based on Password List setting
Fix a possible exception for the Password Reset Portal when trying to send emails for the Temporary PIN Code verification policy, if the mail server settings was configured for TLS
Could not add a 'Dependency' to an existing password record via the WinAPI when the user had permissions applied at the password record level, instead of the Password List level

Passwordstate 8.9 - Build 8933 (9th June 2020)

Fixed

Fixed an error introduced in Build 8925 where an exception was raised when editing the built in Password List Template called 'SSH Account (Passphrase + Key Storage)'
Fixed an issue when editing an OTP record where the Secret was not being displayed on the screen
Fixed an issue in the Windows Integrated API where it may have reported a ToDouble() casting error when logging an exception, which was hiding the real exception
On Scheduled Reports, changing the checkbox 'Append date to file name in format of YYYY-MM-DD' was not saving
Fixed an issue in the Windows Service where an exception of column name ADSyncDebug not found was raised
Fixed an exception when adding in more than 32767 users for the Password Reset Portal Module
When bulk updating Password Reset Options on a Password List, there was an issue selecting the Privileged Account on the search screen
Sorting on the Linked for Update column on the Privileged accounts screen was causing a general error

Passwordstate 8.9 - Build 8925 (25th May 2020)

Updated Features

UpgradeLog.txt file will no longer be deleted after upgrades complete
When checking for new builds of Passwordstate, https will be used to query Click Studios web site, instead of http
Updated the User Acceptance Policy to say "Accept" instead of "Continue" when forcing it to be agreed to upon every login
Changed wording on login screen to be more ambiguous if user enters an incorrect username
API method for adding Security Groups now checks if the Security Group exists before adding it
Made various improvements to the Remote Session recording playback screen
Updated Firefox extension to build 8905 to fix an issue where it wasn't saving credentials for some websites
Updated Chrome, Edge and Firefox extensions to build 8904 to fix an issue with saving credentials for some sites
Provided a new system setting to highlight the password fields on the Edit Password screen when you click on the Generate Password icon
Improved icons in Browser Based Launcher and file copying for RDP Sessions
Added additional debugging for failed tests of backup settings, and sending emails
Updated descriptions of SSH Keys Password Lists Templates, and change password field on one to be non mandatory

Made same changes to attempt to resolve an inconsistent issue of Permission methods in the API failing since upgrading to build 8903
Fixed an issue where Hosts were not sorting properly if the nodes were limited in the Hosts navigation Tree
Fixed an issue where clicking on the Save button on Bulk Permissions screen when no changes were made was generating a general error
Fixed an issue when adding in a new User Account manually where it was not always possible to select the correct domain record
Fixed a bug where a new session recording for remote sessions may have been named incorrectly on the file system, if similar sessions were marked for deletion in the database
Under certain conditions, the option to not synchronize the email address field for Active Directory accounts was not working
Fixed an issue with a new install of the Password Reset Portal where it may have errored regarding the file System.Net.Http.Formatting.dll being missing
Fixed an exception when saving System Settings if you had all authentication options for the setting 'Hide the following Authentication Options on User's Preferences screen' selected
Fixed an issue where viewing 'Active Users' when logged in with the Emergency Access login account could have resulted in an exception
Fixed an issue with the HP iLO Reset script where it was unable to reference the Chilkat library

Passwordstate 8.9 - Build 8903 (6th April 2020)

Updated Features

Provided a new level of code obfuscation for all modules of Passwordstate
Made minor changes to encryption/decryption routines - all data will be re-encrypted during the upgrade process

Fixed an issue on the Hosts screen for Remote Session Launchers where the OnClick event handler was still enabled for a button which appeared to be disabled

Passwordstate 8.9 - Build 8900 (21st March 2020)

Updated Features

Made further improvements to Chrome, Edge and Firefox Browser Extensions
Updated to the latest version of the Chilkat SSH Assembly
Fixed an 'Object reference not set to an instance of an object' error in the API when passing a value for the System Wide API Key, but this key was blank in the database
Added in warnings for Scheduled Reports if user had no email address assigned to their account in Passwordstate
When deleting the entire contents of a Passwords Folder in the Administration area, one 'Password List Deleted' auditing record will be added for each Password List
Fixed an issue where restoring the default Palo Alto Password Reset script was restoring the wrong script
Fixed an bug with the Debug AD Sync process where it would fail is a Domain Controller was not specified as part of the domain records
Fixed an issue where the PasswordListID field was set to smallint instead of int in the database, preventing bulk deletion of Folders and Password Lists
The Add Password List Wizard will now remove Templates which have the 'Enable Password Resets' selected, if the user is not allowed to create these types of Password Lists
Provided better error messages in the API if PasswordListID or PasswordListTemplateID values were specified, but did not exist in the database

Fixed a memory leak for the Password Reset Portal when synchronizing user accounts and security groups
Fixed an issue where user accounts from a Remote Site Location could have had the Delete menu enabled for password records
Fixed a bug for the Windows Dependencies Discovery Job where it may not have reported that a host was offline
Fixed an syntax error in the Windows Dependencies Discovery script for IIS Application Pools
Fixed an issue where the schedule for Discovery Jobs may not have executed at the correct time for the Remote Site Locations agent
Fixed a SQL Timeout Query issue for the Password Reset Portal when synchronizing thousands of user accounts

Passwordstate 8.8 - Build 8884 (28th February 2020)

Updated Features

Made a change to the Windows Dependency Discovery script, to ignore LocalSystem being return for Application Pools
Updated HP iLO password reset and validation scripts to use Chilkat SSH assembly
Improved documentation for SQL Connections with client based remote session launcher

Fixed an issue where duplicate auditing records could have been added from a Password Folder screen if multiple clicks on Copy to Clipboard was triggered, for either username or passwords fields
Fixed an issue in the API where it was possible to make certain calls to the Hosts and AddressBook API when leaving the relevant required API Keys blank on the System Settings screen
Fixed an 'Object Reference' error when adding Host records via the API, if a Hosts Folder had multiple entries in the Tag Match field
Fixed a General Error when trying to copy the Username field to the clipboard from a Passwords Folder, or Passwords Home
Removed some unnecessary NTFS permissions applied during the install of the Windows Credential Provider, for the Password Reset Portal

Passwordstate 8.8 - Build 8876 (17th February 2020)

Updated Features

You can now specify a specific domain controller to connect to for the Active Directory synchronization process
Improve error reporting screens if the AD Integrated version of Passwordstate did not have any domain records add with the 'Used for Authentication' option selected
Changed Cisco Validation script to use Chilkat Library instead to support DH2048 and better for SSH connections
Password related ID values will now be retained in Auditing data when a password is deleted, and will also be included in the message body of syslog records
Updated Dependencies Discovery Script to exclude further inbuilt system accounts for scheduled tasks which do not need to be managed
Made a change to ensure the Password Reset Schedule 'add days' field could not be blank on password records which are enabled for resets

Fixed an issue where the Password Generator within the Passwordstate Windows Service may have on occasion creating duplicate password values
Fixed and issue with the Client Based Launcher for RDP, where a space could not be used in the value of the authenticating password
Fixed an issue when using the Copy to Clipboard feature when searching on Passwords Home and Folders where it may have recorded the password strength as the Username in auditing data
Fixed further issues with the browser extensions where the Login buttons was not being enabled on certain sites, as well as ID fields changing when they should not have been
Fixed an issue with the browser extensions where it would not auto fill some websites

Passwordstate 8.8 - Build 8865 (28th January 2020)

Fixed

Fixed an issue that was introduced in build 8864 where the button for the Browser Based Launcher was not working

Passwordstate 8.8 - Build 8864 (27th January 2020)

Updated Features

Upgraded to the latest ComponentSpace assembly for SAML Authentication to support SameSite cookie restrictions coming in Chrome 80
Made changes to Client Based Launcher to work around bug in protocol handler in Chrome 77 and above
Browser Extension now available for the new Chromium based version of Edge
Extended the default SQL Timeout period for reporting in Passwordstate
Update to the latest version of Telerik ASP.NET Ajax Controls for full support of the new Chromium based version of Edge
The 'Show Active Directory Actions' option can now be enabled on Private Password Lists
Disabled the menu Copy or Move to Different Password List for password records if the password was being masked for the user in the Password List
Removed the extension of the Inactivity Timeout value when accessing the Hosts tab as it's no longer required now that remote sessions open in a new tab

Fixed a SAML Authentication issue using the High Availability instance of Passwordstate
Fixed an issue where a manual upgrade of the Self Destruct Message web site could have errored with reference to a virtual directory that did not exist
Fixed an issue with auditing for the Password Reset Portal so it would report the IP Address of the user, and not the web server
Fixed an issue with email attribute synchronizing from Active Directory to Passwordstate, if the user was part of no security groups.
Fixed an issue with testing sending an email from an Email Template where it was not honouring which account was used to send the email from
Fixed a button positioning issue with Forms Based Authentication and Dou

Passwordstate 8.8 - Build 8850 (23rd December 2019)

Updated Features

Increase the default timeout for SQL Server commands for the encryption key rotation process
Updated to the latest version of the Telerik ASP.NET Controls
Removed the 'Show' button for various Authentication options on the Preferences screen
After a user resets their Forms or Local Account login password, they will now be asked to authenticate again immediately after
Updated the Self Service Password Reset Portal to ensure various pages could not be browsed to directly, without first enrolling or verifying your identity

Fixed a potential issue where the encryption key rotation process may not have re-encrypted all password records, causing a database integrity error on the screen when accessing the Password List

Passwordstate 8.8 - Build 8844 (16th December 2019)

Updated Features

Simplified the installation process for the Remote Session Gateway
Increased the default database timeout value when cloning permissions for users and security groups
Provided additional error capturing for Account Discovery Jobs is certain machines had restrictions for running PowerShell scripts - json deserialization errors should not show any more
Updated various obsolete properties on Telerik ASP.NET Controls

Fixed an infinite SAML authentication loop introduced by Windows Update KB4530689 on Windows Server 2016 and KB4533013 on Windows Server 2019
Fixed and exception when sorting the column Heartbeat Status on the screen Administration -> Password Lists -> Bulk Password Resets

Passwordstate 8.8 - Build 8838 (5th December 2019)

Updated Features

Changed the wording on the Global search textbox to remove reference to Hosts if the user does not have access to this tab

Fixed a newly introduced bug where Local Security Groups were not showing on the Security Groups screen
Fixed and issue with the Pattern Matching option for the Password Generator Policy so that letters/numbers where not repeated in the same password

Passwordstate 8.8 - Build 8835 (29th November 2019)

Updated Features

Custom SSH Scripts using the Chilkat library are no longer allowed due to licensing restrictions - please use new SSH Template script options instead
Added two new 'Templated' SSH password reset script options where you can pass command parameters to the script instead of developing your own custom scripts
Added Palo Alto Firewall support for Password resets and validation
Disabled function keys in browser when using the Password Reset Portal web site
If additional authentication options are set on a Password List, those Password Lists will no longer be visible in the Mobile Client
Add the ability to perform exact match searching in the API(s) when searching for Folders and Password Lists
Email Temp PIN verification policy now displays the email address on screen for 15 seconds, instead of 3 seconds.
Fix an issue where duplicate security groups could have been displayed on the Security Groups screen, if duplicate domains where added on the screen Administration -> Active Directory Domains
Add an option where a single Password record can be linked to multiple Web Site URLs to be used with the browser extensions
Made further improvements to form filling and Field ID updates for the Chrome Browser Extension
Released redesigned Firefox browser extension
Fixed potential form filling issues with browser extensions if the URL stored in Passwordstate was not prefixed with http or https
Added the variable to other URL fields on various screens, including any Generic Fields configured this way
Remove the Google Fonts reference call in the Password Reset Portal module
Password Reset Portal will no longer automatically enrol a user for the "Email Temp PIN verification policy, if the user does not have an email set in Active Directory
"What has a user been doing lately" report will no longer report on all users when you first enter the report screen
Made performance improvements in the Windows Integrated API when returning all records the user has access to

The Office 365 and Azure AD Reset and Validation Scripts were missing from new installs of Passwordstate
Fixed a password uniqueness issue with the Password Generator Policies
Fixed an issue where it was not possible to delete the default 'Read Active Directory....' Privileged Account Credential if it was no longer in use
Fixed a general error when users are searching for password records, but only searching by entering a space as the search criteria
When using an account which requires Check Out with the Remote Session Launcher, it was not checking out the account if SQL Server credentials were also displayed on the screen
On the Edit Password screen, generating many new random passwords and the clicking the Copy to Clipboard icon, was adding duplicate auditing records

Passwordstate 8.8 - Build 8812 (21st October 2019)

Updated Features

Provided an option for RADIUS authentication which does not require pre-authentication with Active Directory
Provided additional options for customizing the RADIUS login screens

Fixed some issues where the Chrome Browser Extension was form filling the wrong fields on web sites
Fixed and issue where certain Windows Datacenter operating system records were missing from new installs of Passwordstate
Fixed an issue where it was not possible to delete Personal Contacts from the Address Book unless you had been granted access to manage Global Contacts
Fixed an issue where a General Error would be displayed when logging of a HA instance when using SAML Authentication - issues introduced in build 8806

Passwordstate 8.8 - Build 8806 (9th October 2019)

Updated Features

When using SAML Authentication, you can now also issue a Logout Request to the SAML Provider when you log out of Passwordstate
Adding additional debugging when saving System Setting changes if there are issues communicating with the Self Destruct Message web site
Removed unnecessary NTFS permissions on the Remote Site Locations Agent installation folder

Fixed various issues in the new Chrome browser extension
The upgrade to the latest version of Telerik ASP.NET Ajax controls broke the One-Time Password generator feature
Fixed an issue with the report 'What authentication option is applied for each user?' where it may not have reported on authentication options being applied via a User Account Policy
Fixed an error with the Active Directory synchronization process for the Password Reset Portal where it was possible an exception of 'FieldNameLookup.GetOrdinal' was raised
Fixed an issue when accessing the API documentation page where it would log an exception into the Auditing data
Fixed an issue with the Browser Based Remote Session Gateway where under certain circumstances access to files on the file system may have been possible
Fixed an issue in the AD Sync process for the Password Reset Portal, where certain account attributes may not have been updating correctly for newly added accounts until the next sync occurred
Issue adding and editing passwords in Firefox if integrating with haveibeenpwned has been resolved
Fixed an issue where a 'Password Copied to Clipboard' auditing record was being added when no password was visible on the 'Provide a Reason' screen when clicking on the Copy To Clipboard icon
When removing a Password List from "View Permissions" in the Bulk Permissions feature, it wasn't showing in the Available Password Lists field
Fixed an issue with the Backups and Settings screen where an error wasn't being displayed properly if there was no domain specified

Passwordstate 8.7 - Build 8792 (25th September 2019)

Updated Features

New Chrome browser extension officially released
Added additional logging for failed Active Directory Logons, for possible LogonHours restrictions in AD
Added additional logging into the Local Windows account Heartbeat PowerShell script
Increased the idle timeout setting in the Dell iDrac Password reset scripts
Updated Browser Based Launcher Gateway to support keyboard-interactive configuration for SSH sessions
Removed unused JavaScript libraries from the API(s) and Self Destruct Message site
Updated jQuery to version 3.4.1
Error console events are now sorted by date/time, rather than Error ID, to ensure better sorting when multiple servers are used

Fixed an issue where a 'Password Viewed' auditing record was being added when it shouldn't have been, under certain circumstances using the copy to clipboard/provide a reason feature
Formatting of text email templates was not displaying properly when a user was CC'd on the Email Template

Passwordstate 8.7 - Build 8782 (11th September 2019)

Updated Features

Beta 2 of the new Chrome Browser Extension available
Adding Active Directory Security Groups is now available via the API(s)
Added an API Method for sending Self Destruct Messages
Added API methods for managing entries in the Address Book
Set security response header attributes consistently across all modules
Set the secure flag for all cookies to be true, for all modules
Updated to the latest versions of Telerik Kendo UI controls for the Mobile client web site
Updated to the latest versions of Telerik ASP.NET Ajax controls
Update the Windows Integrated API to pick up any changes to the Allowed IP Ranges feature on each new call to the API
With the Address Book feature, the last selected Contact Type will be remembered next time you open the screen
Address Book grid will now be sorted by Firstname, Surname

Fixed an issue with scheduled Custom Auditing reports where it may not have reported back data when it should have
Fixed an issue where security groups with an & symbol in their title would not produce any results in certain reports
During the Active Directory synchronization process, certain AD attributes where not being updated for accounts if no Security Groups were added into Passwordstate - this also applied to the Password Reset Portal
Fixed an issue where editing a user account for the Password Reset Portal feature would show a database integrity issue, when using the auto enrolent feature
Fixed an issue where certain special characters being copy to clipboard from Recent Passwords grid on the Passwords Home screen was causing an exception
When a Password List was configured to specify a 'Reason' why someone was accessing a password record, it was not recording the PasswordID value in the Auditing data

Passwordstate 8.7 - Build 8765 (19th August 2019)

Updated Features

Beta version of new Chrome Browser extension now available
If a Password Reset were to fail for any reason, history of data for the failed attempt is now retained so you can reference password values for attempted resets if required
Removed the password length restriction for the Email Server account on the System Settings screen

Fixed an issue in the Fortigate Password Reset script where the script reported back a failed reset when it did successfully reset the password - due to file system consistency issue on device
Fixed an issue where a High Availability trial license key was not being accepted

Passwordstate 8.7 - Build 8760 (12th August 2019)

Updated Features

Add 14 new predefined reports which can be run manually, scheduled, or executed via the API(s)
The Client Based Remote Session Launcher now retrieves authentication details directly from the Passwordstate API (requires reinstall)
Some predefined reports have been modified to show the number of days since a password has last been updated/reset
Some predefined reports have been modified to allow reporting on all historic data, instead of set duration
The Privileged Account Credentials screen now shows if the account is in use or not
The Modified date field in grids for documents will now show the time documents were updated as well
When uploading documents via the API, if the same document is uploaded subsequent times, the DocumentID will no longer change
Changes to Allowed IP Ranges for API calls will now be checked with every single call to the API
Dates fields in various reports will now be consistently displayed in universal time format
Reordered some of the columns for 'Password Reports' to show Password List information first, and then Password information second
Added the -NoProfile parameter to the call to powershell.exe when using the Client Based Remote Session launcher

Fixed an issue for the Client Based Launcher where using the Manual Launch button and searching for a credential was not authenticating when using Private Key authentication
Fixed a .NET Framework error, for protection against certain characters being used, in the notes field for hosts records
Fixed an issue in the Windows Integrated API for the report 'What passwords can a user see?' where it may not have returned the same results as the standard API did
Fixed a SAML routing issue for the High Availability site when using an active/active setup, but different URLs for each Passwordstate site
Fixed versioning of the Passwordstate Windows Service .exe file from the previous build

Passwordstate 8.7 - Build 8744 (29th July 2019)

New Features

Added options where you can now auto-enroll users for the Password Reset Portal - for 7 out of 10 of the Verification Policies

Added some validation on Backup Settings and Privileged Account Credentials screens to ensure account names did not exceed expected lengths in Active Directory
Added additional error capturing for the Office 365/Azure AD password reset script for the authenticating password being incorrect
Added a check for Generic Field data types to ensure semi-colons are not used for Select Lists or Radio Buttons
The date of when a user last used the Password Reset Portal is now recorded, and can be reported on
No further development work will be done for the Internet Explorer Browser Extension - either features or bug fixes
The Log Off dialog will also have a Title specified in the header bar if set under the Branding section of the System Settings screen
Changed the default values for newly added System Settings for the Privileged Account Credentials screen to be less restrictive
Ticking and unticking the 'Enabled for Resets' option for password records will no longer pre-select password reset or validation scripts
Added Google Cloud as a virtual machine type
In the Hosts navigation tree, hosts will now be sorted correctly if some records are using the Title field instead of Host Name
Made changes to the Password Reset Portal web site to prevent right click context menus in browsers and opening Developer Tools in Internet Explorer

Fixed an issue where charts where not rendering because of a JavaScript error if the web server's operating system was set to Polish
It was possible an incorrect Enrollment email for the Password Reset Portal could have been sent to a user if multiple verification policies were applied
Fixed some html encoding output issues in emails for special characters like umlauts

Passwordstate 8.7 - Build 8729 (10th July 2019)

Updated Features

Added a new System Setting option to exclude synchronizing the email address for Active Directory user accounts
Set autocomplete = false on the Username field on Add/Edit Passwords screens
Added support so Windows Datacenter operating systems could be discovered using a Discovery Job
Deleted jquery-ui.min.js off of the file system if it still existed
Removed further header response attributes to not reveal server information in header responses
Labelled access requests better to more easily distinguish between a request for a Password List, or Password Record
Added additional java script output encoding to various pages, in addition to back end server checks
Added additional debugging onto the screen informing the user that the SQL Server 2012 Native client is not installed
Added additional license checks for High Availability module - to ensure Registration Names match

Fixed an issue in the AD Sync process where the time taken to execute could increase over time when synchronizing thousands of security Groups
Fixed an issue with SSH key authentication for Google Cloud virtual machines
Some reports for the Password Reset Portal required a Security Administrator role from the core product, instead of from the Reset Portal module
Fixed an issue with synchronizing security groups into the Password Reset Portal, when maximum password age was not set in a fine grain group policy
When returning a Hash for the password field via the API, if the Hash Type is misspelled then you will be informed of this instead of returning the password value
Fixed an issue where the Passwordstate Windows Service was not removing Guest permissions on folders automatically after they were removed from any nested Password Lists
Fixed an issue sending Auditing data to syslog servers over TCP where it was possible an exception was raised regarding multiple sockets being opened
Fixed an issue with the Windows Credential Provider where it was returning users to the Windows Login screen, when resetting their password natively through the Windows Login screen
Fixed the following SAML Authentication on the active node of high availability setup - An SSO service URL for the partner identity provider hasn't been configured
Fixed an issue with the Password Reset Portal where certain special characters in the value of passwords was causing a IIS Server Error
Notes field in PasswordHistory table was not set to same length as Passwords table
The additional authentication option after SAML authentication was not working when Anonymous Authentication for the site in IIS was enabled
Fixed an issue where HaveIBeenPwned reports would not work with proxy server configurations settings in Passwordstate
Group Managed Service accounts could not be imported into the User Accounts screen, only normal and Managed Service Accounts

Passwordstate 8.7 - Build 8706 (3rd June 2019)

Updated Features

Provided new System Settings options for updating Password Folders when you have modify permissions to them
Provided new System Settings options for deleting Password Folders when you have modify permissions to them
Provided a System Setting option to allow deletion of Password Lists when you have Modify rights to the list
Upgrades are no longer possible when logged in with the Emergency Access login account
The filter on Hosts Folders to automatically add new hosts into the folder, now uses a semicolon for separators
Remote session recording indicator will now be shown for passwords records within the Passwords tab
Removed 'Format Code Block' icon from all editors
Added a hover tooltip on certain permission pages so you can see the UserID for each user who has been given permissions
Provided a new System Setting option to choose which users are able to access the passwords recycle bin based on the permissions they have on the Password List
Added html encoding of various input to ensure html can not be send in any generated emails
Made changes to launching URLs from Passwordstate to ensure the case of the URL was not changed

Fixed a bug where an Active Directory Account Discovery Job could not be edited from the Administration area
Fixed an issue with domain NetBIOS detection for the Password Reset Portal Windows Credential Provider
Fixed an issue with Local Administrator Discovery Jobs for Windows where the Username was being returned as null if PowerShell 2 was being used on the host
Fixed an issue when adding/editing an Active Directory Account Discovery Job for a Remote Site Location, where the list of domains for the Remote Site may not have shown

Passwordstate 8.6 - Build 8691 (18th May 2019)

Updated Features

Changed the AD Search functionality to exclude computer objects when looking for user accounts
Made further security improvements to the execution of PowerShell scripts

Fixed issues with the Browser Based Gateway where the browser tab could close in certain browsers if the authenticating username or password was incorrect
Using the Heartbeat icon on the Privileged Account Credential screen was now working if the System Setting option to hide the password was set to yes

Passwordstate 8.6 - Build 8687 (14th May 2019)

Updated Features

Added additional debugging, and a visual indicator, if records are getting stuck int the Password Reset Queue due to an unexpected exception
Password Reset Portal Windows Credential Provider now supports usernames with full stops in the samAccountName attribute
Made a change to launching URLs for password records to support the PasswordID being passed as a parameter to the URL

Fixed an 'Object reference not found' error when using the Add Password List Wizard, due to the 'Standard Password List' Template being renamed in the system
The additional authentication option after SAML authentication was not working when using the Forms Based Authentication version of Passwordstate
It was possible a Privileged Account Credential could have shown more than once on the Privileged Accounts Credential screen, if duplicate permissions were applied
Fixed an issue where scheduled backups where failing due to the SelfDestruct.db file being locked and in use
Brute force attack protection for authentication may not have been working depending on specific email alert settings

Passwordstate 8.6 - Build 8679 (26th April 2019)

Updated Features

Added confirmation pages for deleting Password Lists, and Folders from the Admin area, where users need to acknowledge they understand the deletion is an irreversible process
Auditing data will now be retained when deleting Password Lists
Added a 'Feature Access' option to choose which users are allow to see various feature buttons on the Hosts Home page
Changed the default setting for enabling session recording to False when adding new host records

Fixed a UI issue on the Edit Password record screen for the Launch Remote Session button when changing the account type from AD to any other account type
Fix an exception when you click on a Password List on the screen Administration -> Password Lists. Exception was "Couldn't store <> in ResetStatus Column"
Fixed a database integrity error when trying to view the Pending Access Request screen if a password record had been moved to a different Password List - the user will now be informed the Access Request has been denied instead
Dependency Discovery Jobs may not have reported the correct Password List name if the dependency existing in a different Password List compared to what the Job was configured for
When exporting all shared passwords from the screen Administration -> Export All Passwords, the 'Formatted CSV' was raising an exception

Passwordstate 8.6 - Build 8670 (16th April 2019)

Updated Features

If the 'Provide a Reason' option is selected for a Password List, then the menu 'Remote Session Launcher with these Credentials' will now be disabled, as you need to open the record and specify a reason before launching the session
Updated the Client Based Remote Session Launcher so that determine the OS Architecture type works for different languages
When using the Manual Launch button for Remote Sessions, users will be asked to 'Provide a Reason' for using credentials from Password Lists which have this option configured
You can now choose to send Emails for Permalinks either via the user's email address, or the mailbox being used for sending most other emails
Added a new System Setting option to hide the 'Copy or Email Password Permalink' menu
On relevant Discovery Job screens, a new tab has been added so you can query live which Host records will be queried as part of the discovery job execution
Added an option to delete Discovery Job results History
Notes field for password records can now store unlimited characters
The Error Console screen will now also show exceptions possibly caused by Anti-Virus software on the Passwordstate web server
Microsoft SQL Accounts can now be reset using an Active Directory account as the Privileged Account Credential
Made changes to MSSQL Discovery Job to allow AD Accounts to be used for the Privileged Account Credential
You can now specify multiple different names for the Local Administrators Security Group for the Windows Local Admin discovery job
Add a new Active Directory account Discovery job, where OUs or Security Groups can be queried, with accounts being imported into a Password List

Fixed an issue in both APIs where generating 100's of random passwords could have produced duplicated passwords
A successful account verification for the Password Reset Portal when using Questions and Answers was not reporting the correct Verification Policy in the Auditing data
Account Discovery Jobs for Remote Site Locations was not reporting any errors to the History of the Job, only to the emails sent for the job
Non Security Administrators could not access the Auditing Graphs main menu
Fixed an exception when trying to use the 'Test Email' button on the Email Template page if there was no email address associated with the user's account

Passwordstate 8.6 - Build 8652 (22nd March 2019)

Fixed

Fixed an issue with the Windows Integrated API where debug data was left in Auditing data for Firstname and Surname fields
It was possible the Auditing Description field was blank when making API calls to retrieve a Password List settings

Passwordstate 8.6 - Build 8650 (21st March 2019)

Updated Features

Added support to perform Password Resets and Account Heartbeats on Office 365 and Azure AD accounts
Added a System Setting option where Security Administrators can only manage Privileged Account Credentials within the Administration area if they have explicit permissions to them
Added a new System Setting option to hide passwords when editing a Privileged Account Credential within the Administration area
Added a new System Setting option to hide user's configured 2FA Secret Keys on their Preferences screen
User's 2FA Secret Keys will no long be visible in the Administration area when editing a user's account
Made some changes to improve the email alerts for accessing the Emergency Login page to try and report who the accessing user is
Windows Dependency Discovery script updated to ignore invalid accounts names based on imported xml files for scheduled tasks
Made changes to both APIs to reduce the amount of calls to the database for the Force SSL and Allowed IP Ranges options
Made various security improvements, including Brute Force detection login failure to Password List authentication screens
Provided an option where you can specify which users are allowed to send Self Destruct Messages from Password records
When prompted to save web site logins with the Browser Extensions, the list of Password Lists will now be sorted alphabetically based on the Folder Name \ Password List Name structure
Removed the requirements for jQuery UI javascript library

Some controls on various pages were not disabled when using the Passive High Availability instance
Fixed an issue with the Browser Based Launcher where it may have been possible to see a message 'Please wait while connecting..." when trying to perform remote sessions
Fixed an error when trying to save the Password Policy for Password Reset Portal where the Failed Password Reset error message was more than 500 characters
Fixed an issue trying to view the Hosts Types & Operating Systems screen in the Administration area where it could have reported that the column HeartbeatSuccess did not exist
Made changes to the Windows Integrated API to avoid account collision when issuing simultaneous multi-threaded calls to the API
Fixed an issue when logged in with the Emergency Access login where you could not enable Maintenance Mode from the Encryption Key rotation screen
When using the Administer Bulk Permissions feature from under the Passwords tab, an 'Object Reference' exception was being raised when removing 'View' permissions
The System Setting for granting Security Administrators access to Shared Password Lists when they were being created, was not being honoured when used in conjunction with the setting to automatically create a new Shared Password List for new User Accounts
Adding a Password List via the API, without copying setting from a Template or Password List, was not adding a record in the PasswordListColumnSettings table - causing issues for the Self Destruct Message feature
On the Add Password screen, the 'Have I Been Pwned' button was not working due to a JavaScript error
Fixed an issue where API Auditing data was being moved to the Auditing Archive table daily when it should not have been

Passwordstate 8.6 - Build 8627 (26th February 2019)

Updated Features

Added support for Yubikey authentication for both main UI and Mobile Client
When an approver approves access to a Password Record, they also have the option of resetting the password when the user's access expires
The Ignored URL option for the Browser Extensions, will now also prevent any form element scanning for designated URLs
Extended the session inactivity timeout setting on the High Availability upgrade screen for slow performing networks
When approving Requests for Access, the approver can now modify the details of the request before approving
Added a new Restricted Feature, to prevent adding new PowerShell scripts, or modifying existing scripts
Made some changes to execute on PowerShell scripts to raise exceptions if certain reserved words are using in scripts
Made improvements to the initial setup wizard, to ensure required fields have been specified
Changed the setup screen where you create the first user account to allow more than 30 characters in length for the UserID field
An additional authentication option can now be specified, post successful SAML authentication
Added a System Wide setting, and user settings, to specify the Keyboard Layout type to use when performing RDP sessions with the Browser Based Launcher
Made various improvements for form filling web sites for each of the browser extensions
Made various security improvements to the Password Reset Portal
Added a System Setting option to hide selected authentication options on the user's Preferences screen
If password records are configured for exclusive checkout, then they will be checked out automatically when using the Remote Session Launchers

Fixed an issue where Request Access to Passwords feature where a new password may have been automatically generated when the user's time-based access was removed
Fixed an issue where a user may not have been given access to a full Folder structure when being granted access to a Password List or Password record via the Windows Service
Fixed a general error which could occur when searching for a credential, launching a remote session with that credential, then further searching for other password records
Fixed and issue where using the Manual Launch button for an RDP session using a local Windows Account was not authenticating properly
Fixed an issue where a Remote Session may not have been launcher from a password credential under the Passwords tab
Fixed and issue with SAML authentication where navigating from the SAML provider to Passwordstate, after you've already authenticated once, was giving a 'not a HTTP POST' error message
Fixed an issue in IE and Firefox where the popup screen for viewing the membership of a Security Group may not have shown the correct members
Fixed an issue with the Browser Based Remote Session launcher where it could not copy files bigger than 2 gigabytes to an SSH session
Could not edit a MySQL Discovery Job after it was added as it was showing an error about not being able to query operating systems
Fixed an issue where upgrading to build 8488 would fail as it errors trying to update data in the EmailTemplates table
Issue downloading files from SSH session with Browser Based Remote Session Launcher is now fixed
Password Reset Portal now allows the apostrophe symbol in usernames

Passwordstate 8.6 - Build 8600 (4th February 2019)

Updated Features

Made Form-Filling improvements to Browser Extensions where fields names were explicitly specified in Passwordstate
Remote sessions can now be launched from the Passwords tab without requiring access to the Hosts tab
Added additional HMAC Hash validation to various functions within the APIs, and in the Administration area of the UI
Made sure there could be no spaces in a Host name when adding or editing host records
If launching a Remote Session from a password record, it will no longer navigate in the UI to the Hosts tab first
Added an option to deploy the Remote Session Gateway separate to the main Passwordstate web site
Added support for per Host session recording, instead of being user based
If using the Have I Been Pwned password check, and 'Prevent Bad Passwords' on Password Lists is disabled, you will now get a warning if the password has previously been compromised
When password records which are enabled for password resets are moved to the Recycle Bin, the option 'Enabled for Resets' will now be disabled
Fixed an issue in Internet Explorer where it was possible to see a dialog asking you to close the tab when using the Browser Based Remote Session
Added additional HTTP headers for improved security
Add additional tools supporting Have I Been Pwned web site
Added reports to check status of passwords on Have I Been Pwned web site
SSH Browser Based Remote Session launcher now allows certain special characters when keyboard layout is not in US layout
If System Settings options are configured to prevent exporting of Password List data, then this will be reflected on the screen Administration -> Password Lists as well
Made some changes to the High Availability upgrade scripts to overcome any file locking issues when copying files
Updated the PowerShell script using for stopping the Windows Services when upgrading the High Availability Instance to wait until the services stopped
Updated the Browser Based Gateway to the latest build
Updated the Browser Based Gateway for the Remote Session Locations module to the latest build
If browsing to the site using a Permalink, the Password Lists/Folders/Hosts in the respective Navigation trees will be filtered and expanded so the appropriate node is visible

The System Setting option to restrict access to newly created Shared Password Lists was being ignored on the new Add Password List Wizard
Fixed issues with Duo Authentication for all modules if TLS 1.0 and TLS 1.1 were disabled on the web server
Actions menu for downloading documents was disabled if the user only had View access
It was possible that when using Firefox there was more than one Audit record added for a single Copy To Clipboard event
Fixed an issue where custom dependency scripts would not execute unless a host records was associated with the dependency
Fixed an issue where date filters in grid column headers were automatically clearing after selecting a date
Fixed an issue where clicking on the option 'Automatically log out of the Browser Extension when you close the browser' in the Preferences screen would cause the setting to be hidden, and then error when saving the change

Passwordstate 8.5 - Build 8573 (9th January 2019)

Updated Features

Redesigned the architecture of Chrome, Firefox, Edge and Safari browser extensions for improved form filling and login field detection
Chrome, Firefox, Edge and Safari browser extensions updated to use jQuery 3.3.1
Browser based remote sessions will now open within separate tabs in the browsers
Update the Windows Credential Provider for the Password Reset Portal to resolve issues with domain name detection issues on login screens
Made some changes to SAML authentication to better support SP initiated SSO providers
Made changes to the execution of PowerShell scripts to prevent execution of PowerShell commands which were not included as part of the scripts
When using an active/active High Availability configuration, the Passwordstate Windows Service will no longer poll back to the primary site to see if it is available
Searching for Hosts under the Hosts tab will no longer close any open remote sessions
The option to link the creation of a Password List to a Template is now disabled by default for new installs
Renamed labels on Browser Form Fields tab on edit/add passwords screens
Added a better descriptive error message when a password reset for an Active Directory account fails due to the account no longer existing in AD
Provided a better descriptive message if a user tries to view the properties of a Password List when they do not have Administrator rights to it
Browser extension will no longer form fill fields on websites if the ID values are recorded in password records
Browser extensions will now only add an auditing record if they save or auto-fill credentials, not every time a website is accessed

Fixed an issue where the Windows Integrated API (WinAPI) was not working when using the 'read only' High Availability instance of Passwordstate
Browser Based Gateway Settings screen in the Administrator area was checking for the wrong Security Administrators role
Users could clone a folder to the Passwords Home even if they had no permissions to create a folder in this location

Passwordstate 8.5 - Build 8556 (11th December 2018)

Updated Features

SSH sessions with the Browser Based Remote Session Launcher now supports file transfers
System Setting option to link to Password List Templates to newly created Password List now works with Add Password List Wizard
Changed the report 'What has a user been doing lately' so that longer durations can be reported against
Made changes to document viewing process and removed legacy javascript code

Fixed an issue where an upgrade from a build prior to 7721 was failing with an error of Build_7721_CopyPassword()' failed with the following error
Fixed an issue with the new Request Access to Passwords feature where a new password was automatically being generated when the user's time-based access was removed
Fixed an issue where special characters in an Active Directory security Group name would cause a .NET Framework exception

Passwordstate 8.5 - Build 8549 (30th November 2018)

Updated Features

Included robots.txt file for Password Reset Portal web site to prevent search engines from indexing the site
Added support for Windows Server 2019
Made some changes to Self Destruct Message feature to allow either sending or saving of messages - made the process more intuitive
Fixed an issue with searching on the Request Access to Passwords screen when the Password List name had square brackets in its title
Added the Tree Path details to the Excessive Activity Report
One Time Passwords Authenticator no longer show the configure buttons on the Password Record if the user has View access
Remote Session Connection auditing data will now show on the screen Administration -> Auditing for Private Password Lists a well

Fixed an issue with SSH sessions with the Browser Based Remote Session Launcher for certain types of HP switches
Fixed an error of "This account is not authorized" within the Local Windows Account Verification PowerShell script
Removed visibility of certain debug information on the Error Console screen
Fixed an issue where notifying users (Email) of changes to a password record was causing an exception
External links on Hosts folders and the new Request Access to passwords screen was not launching the URL in a new tab

Passwordstate 8.5 - Build 8537 (14th November 2018)

What's New Video

Improved the Request Access to Password feature, also allowed a requirement for multiple approvers
Added options for the Self Destruct Message feature to save the message, but not email the recipient - and then the Self Destruct URL can be emailed outside of Passwordstate
OTP accounts in Password Lists can now be copied and linked between different Password Lists which are enabled for OTP
Made further HMAC Hashing improvements in the database
Handshake approval feature has now been deprecated
Added Logged Off Auditing events for the main Passwordstate application
Changed the Issuer for Google Authenticator for the Password Reset Portal so it doesn't conflict with existing scanned QR Codes on your phone for the main Passwordstate web site
Updated the Linux Password Reset script to capture successful reset messages for French operating systems
Provided an option to disable email notifications per Password List
Made some improvements for error reporting if user's sessions in IIS end prematurely, or if using multiple tabs when accessing Passwordstate
Made various improvements to Linux Validation script

Fixed a general error screen on the passive High Availability mode when trying to perform a remote session when session recording was enabled
Fixed an issue with One Time Passwords generator where trying to add the QR code manually into the system would give an unexpected error
Fixed an issue in the APIs to ensure the UserID field specified for any permissions is set to lowercase as required
Fixed an issue with the copy to clipboard functionality where multiple Euro symbols where included in the value of the password
Fixed an authentication issue with a combination of SAML and alternate Authentication options based on Allowed IP Ranges, when navigating to the site after first authenticating to the SAML provider
Copy to Clipboard button for the Self Destruct Message URL was not including the ID field value
Fixed a Generic Error on the Add Privileged Accounts screen when selecting an Account Type from the dropdown list using keyboard navigation

Passwordstate 8.5 - Build 8519 (24th October 2018)

Updated Features

Added PasswordListID and PasswordID values into various Permissions reports
Removed the IP Address reporting in the Temporary Pin Code email for the Password Reset Portal, as it was reporting the IP Address of the Passwordstate web server
Added an option for Passwordstate, Password Reset Portal, and Self Destruct Message sites to allow you to add your own custom css
Added a new System Setting option to allow users with View access to passwords to use the 'Expire Now' menu
If the Force the User of Selected Password Generator option was selected for a Password List, all new records being added will have a new password generated when opening the page
Added an option where the UserID field on Active Directory Authentication screens can be set to read only
Discovery Jobs will now maintain a history of changes, which can be viewed from within Passwordstate
Using the Run Now menu for Discovery Jobs will no longer alter the existing schedule
Made a change to mitigate against any conflicts where a password reset of a Privileged Account Credential was scheduled at the same time as other accounts, which are using the Privileged Account to perform the reset

Fixed an issue where 'There was an issue validating both the AuthToken session variable and cookie' may have been recorded in the Error Console
Fixed a 'Object reference not set to an instance of an object' error when trying to add password records via the API when the Password List was for a Remote Site Location
Fixed an issue were Logos for the Self Destruct message web site may not scale correctly on mobile phones
Fixed an issue were Logos for the Password Reset Portal may not scale correctly on mobile phones
It was possible the Agent Health icon on the Remote Site Locations screen may not have reported the health of each agent correctly
Fixed an issue where the embedded Self Destruct Message web site was not redirecting properly if specifying the ID manually
Fixed an issue with Browser extensions were not logging some auditing data
Fixed an issue where the password strength of a password wasn't being displayed the first time a password was created, when the 'Force the use of Password Generator' setting was enabled
The duration taken to perform an AD Sync process was not being accurately reported in the Windows Application Event Log

Passwordstate 8.5 - Build 8501 (12th October 2018)

Updated Features

Changed the SAML Authentication so you are not forced to re-authenticate to the IdP every time you want to log into Passwordstate
Browser based Remote Session Launcher now supports dragging and dropping files from your desktop to RDP sessions
The Copy or Move Password to a different List feature will now highlight the source Password List by appending an asterisk to the end of the name

The new SAML Audience Restriction field was being cleared once you went back into the System Settings screen
The ExpirePeriod variable was not showing on the Self Destruct email message the recipient received
Fixed an issue where it was possible under certain conditions to bypass the Verification process for the Password Reset Portal
Fixed an issue when cancelling Host Record Permissions under Feature Access, was taking you to an incorrect tab
Fixed an issue where you could not change the color of the Self Destruct Portal theme without logging in an out of Passwordstate first
Expiry Date password searching via the APIs was reporting "It appears the ExpiryDateRange field you specified was not in the correct format"
Fixed an issue where SSH Session Recordings in Build 8491 was not working

Passwordstate 8.4 - Build 8491 (5th October 2018)

Updated Features

The Self Destruct Message feature can now allow users to manually enter the MessageID on the initial screen when viewing a message, instead of sending them URL links in emails

Fixed an issue where the Save button was not working in Firefox on the Add/Edit Password screens
Could not send Self Destruct Messages to external recipients if the recipient was not recorded in the new Address Book

Passwordstate 8.4 - Build 8488 (3rd October 2018)

New Features

Added conditional permission check on destination Password Lists for the copy/move password record feature
New Self Destruct Message site with separate install, branding, passphrase protection and address book for contacts

Made various improvements to SAML Authentication process
SAML Authentication can now be based on either the UserID, EmailAddress or UserPrincipleName fields in the database
Added an option for the Password Reset Portal where users can be redirected back to a specific URL when they click on any 'Exit' buttons
Mobile Client web site will no longer differentiate between incorrect Username or Password - it will provide a generic "Incorrect Login Details" if authentication fails
Made some improvements to ASP.NET Session management
Added an option where Forms Based and Local Login accounts now have to adhere to a Password Strength Policy when resetting the passwords for user's login accounts
Changed the Active Directory account validation, just prior to a reset, to use the same PowerShell script as the Heartbeat functionality uses
Added an option to purge all records in the Password Reset Queue
Added detailed debugging option for processing or records in the Password Reset Queue
Certain 'Local' Account Types will no longer show as Remote Session Credentials of not appropriate
When using the Bulk Delete Hosts feature, you will now be notified if some hosts could not be deleted as the records are still in use
When cloning users' permissions, you now have the option to not remove the destination users' permissions first
Added an option where you can specify which users are allowed to manage permissions on Remote Session Credentials via the View Permissions menu
Made some improvements to the Linux Validation Script to better detect incorrect account passwords
Made some changes to the High Availability Node poll process to try and resolve polling issues reported by customers
Password List Grids now have filters available for Account Type
HTML tab on each of the Rich Editor screens has now been removed
Syslog data will now be UTF8 encoded
Updated all pages to use the latest version of jQuery
The Tag field for Host records is also now searchable in the Hosts navigation tab
With the Add Password List Wizard, the Finish button is now disabled after you first click it - to prevent multiple clicking
Updated to the latest version of Telerik ASP.Net Controls
When Password Expiring Emails are sent to users for the Password Reset Portal, an audit record of category 'Email Sent' is now added with details of the reminder

Fixed a bug where the Recycle Bin for a Password List may not have been able to be viewed if the grid for the Password List had been customized
Standard failed Active Directory login attempts were adding records into the Error Console screen when it should not have been
AD Synchronization debug information was showing on the error console screen when it shouldn't have been
Fixed an exception on the Edit Password screen if you try and save an Active Directory record without selecting a domain

Passwordstate 8.4 - Build 8459 (3rd September 2018)

Updated Features

Remote Session Connection auditing data will now show in the Recent Activity Grid, and also the Auditing screen for general users
Added additional fields into the Recent Activity grid beneath each Password List

Fixed an issues where the SearchPasswords API Call was causing an exception, if there was no System Wide API Key creating in the Administration area
Fixed an issue where data could not be inserted into the new AuditingArchive table

Passwordstate 8.4 - Build 8455 (31st August 2018)

Updated Features

Permalinks for selecting the Folder or Password List in the Navigation Tree will now select the appropriate nodes when the Load On Demand feature is being used

Fixed an issue where it was possible the AD Sync process for security groups would error when adding new user accounts and the option was set to also create a Password List for the user
Newly discovered Host records may not have been automatically added into a folder, if the Host Type of 'All Host Types' was selected
Fixed an issue where Permalink redirection was not working when only Windows authentication was enabled in IIS
Fixed an exception when searching for Host records via the API when the DatabaseServerType field was NULL in the database
Allowed images of type jpeg for branding of Background image - only jpg was previously accepted

Passwordstate 8.4 - Build 8449 (24th August 2018)

What's New Video

Updated the APIs so you can manage permissions on Folders, Password Lists and Password records
Windows API now supports password records where individual permissions are applied to the record
The new 'Reason' and 'HashType' parameters for API Calls can also be configured at the Password List level to be mandatory
Password retrieved from the API can now be returned as a Hash instead of the actual password value
When adding new Password Lists via the API, you can also apply permissions based on Security Group Name
When updating passwords via the API, you can now choose to exclude having the value of the password returned for the updated password object, or an auditing record will be added if the password is returned and visible
Added logging for high level API exceptions to the Error Console screen in Passwordstate, if API calls with invalid syntax are made
Added the ability to specify a 'Reason' as to why API Calls are being made, and this reason will be added to auditing data
Added an option to further restrict which users are allowed to modify settings on the 'API Key & Settings' tab for Password List settings
Optimized memory usage within the Passwordstate Windows Service
Added an option where you can specify a background image for the authentication screens
You can now specify your own Syslog date formatting for sending auditing data to Syslog servers
Added a new System Setting option to delay failed login messages from Active Directory, to obfuscate if the issue was either a incorrect Username or Password
Password Expiry Reminder email for the Password Reset Portal also now includes the user's domain account name in the email
If a password record has the option set to prevent exporting the password, then the record will also now be excluded from the Password History report
Added timings into reporting from the Passwordstate Windows Service for the Active Directory user and security group synchronization process
Added any exceptions from the Passwordstate Windows Service into the Error Console screen in Passwordstate
You can now manually specify One-Time Password settings instead of just scanning QR Codes
Failed SAML authentication attempts will now report the email address being used in Auditing data
Added additional debugging for any failed AD authentication login attempts
Deprecated the feature where you can archive auditing data from the UI
Introduced a new Auditing Archive table where auditing records can automatically be moved to the archive table to help with performance in the UI
Provided an option where you can specify the URL the browser extension authenticates/operates against
Send Self Destruct menu will now be disabled if the Hide Passwords setting on a Password List is applicable to your account
The global search feature for the API can now use Password List API Keys, instead of just the System Wide API Key - only data from the relevant Password List will be returned when doing this
Provided additional logging if a custom PowerShell script for account dependencies where to fail for whatever reason

Fixed an error with synchronizing AD Security Groups for the Password Reset Portal where the maxPwdAgeInDays attribute in AD was set to 0
Fixed an issue in the Password Reset Portal where a hardware token assigned to a user's account in Duo was not showing in the list of devices
Auditing records where being added when exporting passwords when the password was configured not to the exported
Fixed an issue where the alternative authentication option for Allowed IP Ranges was not working when Forms Based and SAML Authentication was being used as the System Wide authentication option.
Fixed an issue with the Password Reset Portal sending out an incorrect enrolment email, if two or more policies were assigned to a user.
Fixed and error on the add Active Directory Security Group screen where it could have been LDAPS instead of LDAP, or vice versa - depending on whether multiple domains were being used
Some HTML manuals under the Help menu were not displaying on various Linux based operating systems
It was possible the Custom Auditing scheduled report was reporting data on Password Lists the user no longer has access to
The 'Search for Password Lists' API method was not adding an audit record for found Password Lists
Fixed an issue where the password requirement indicators were not showing on the password reset screen for the Password Reset Portal
Fixed an issue with reordering password dependencies
Fixed an issue where it was not possible to update the Email Templates for the Questions and Answers Reset Portal verification policy

Passwordstate 8.4 - Build 8411 (12th July 2018)

What's New Video

New Features

Added a new 'Add Password List Wizard' feature for simplifying the process of adding new Password Lists
Added a new 'One-Time Password Authenticator' feature which can be enabled per Password List

Added some checks to ensure backups could not be stored within the Passwordstate folder
Added a reminder popup to save Password Lists or System Settings after generating new or updating API Keys
Added multiple new Inbuilt Password List Templates which can now be used
Password Lists can now have their columns hidden globally to all users via Password List settings
The Description field is now displayed next to the Password List name on the standard Password List page
Made improvements to the local Windows account password reset to better support non-domain joined machines
The Windows Credential Provider for the Password Reset Portal has now been updated so that Internet Explorer opens in Kiosk mode

Fixed an issue where you could not login using the Emergency Access account if the Remote Site Locations module had expired
Fixed and issue in the SonicWall reset script where an incorrect variable name was being used to pass the value of the current password
Fixed an issue introduced in Build 8388 where the 'Save and Add Another' button was causing certain fields/controls on the screen to be non-responsive after clicking on it
Fixed an issue where reports may not have been emailed if the user did not have a Security Administrator role
TOTP Secret was not being added to QRCode when users viewed settings on their Preferences screen

Passwordstate 8.3 - Build 8397 (21st June 2018)

Updated Features

On the Brute Force CAPTCHA page, the enter key submission is now disabled and a 15 second pause will occur if the CAPTCHA validation fails

Fixed an issue where the Password Reset Portal would error with Build Mismatch after upgrading to Build 8388
Fixed an issue introduced in build 8388 where an upgrade from version 7 would error on the database upgrade screen
Fixed an issue where after being presenting with the Brute Force CAPTCHA login page, it was possible to browse back to the main URL of Passwordstate and start an additional authentication attempt
External Link description field for Folders had a hyperlink on the field when it shouldn't have
Fixed an issue where the Mobile Client web site may not have sent certain emails as expected
Fixed an issue with the SQL heartbeat feature where it would error if the password contained a semi colon character
Various security improvements

Passwordstate 8.3 - Build 8388 (19th June 2018)

Updated Features

Added support for the 'Have I Been Pwned' API for the Add and Edit Password screens
Added support for the 'Have I Been Pwned' API for the Password Reset Portal
Updated Passwordstate and the mobile client to support authentication using the Active Directory UserPrincipalName attribute
Updated Passwordstate Reset Portal to support authentication using the Active Directory UserPrincipalName attribute
A custom Windows Credential Provider is now available for the Password Reset Portal, allowing users to access the Portal directly from a link on the Windows Login screens
Added a new feature where you can upgrade High Availability instances of Passwordstate, directly from within UI of the Primary server
You can now have duplicate Security Administrator records assigned to your account, via user account and or security groups, and the roles will be combined
You can now hide Security Administrator menus, instead of disabling them, if the user has not been given access to the required role(s)
On the Bulk Password Reset screen within the Administration -> Password Lists, you can now also see records which are not enabled for resets
When search for a host record on the Add/Edit password screen, you can now also search on the Title field for the host if it has a value
Added debugging data for failed password validations for the Backup account, and Privileged Account Credentials
The feature to delete a Folder and all nested Password Lists and Folders has been improved to avoid issues with slow performing database servers
After upgrades, any existing Notifications regarding new builds will be automatically deleted
If you have not been given access to create Folder and Password Lists in Password Home, you now also cannot drag and drop these into Passwords Home
Redesigned the password screen for the mobile client so more data can be seen for each field
"What passwords can a user see" report has now been modified to show each individual password records, instead of access to a Password List

Security Administrator's Report was missing a couple of newly added roles
The scheduled backup zip file could not be opened with the build in compression tools in Windows Explorer - other zip programs were not affected
Fixed an issue where editing a newly added Host record would show an error, when the Host was created using the 'Save & Add Another' button
Fixed and issue on the Bulk Password Reset screen in the Administration area where a search filter may have been cleared if using paging buttons for the grid
Security Administrator role for Remote Session Management was not renamed from Remote Session Credentials
Fixed an issue where the Check-In Tooltip for a Password record was not changing if the schedule was changed when the record was checked out
Fixed an issue with the Host Discovery job where it was possible to receive the error 'No value given for one or more required parameters'
Fixed an issue where manually adding host records to a Host Folder could have added the wrong hosts if using paging in the Hosts grid
Fixed an issue in the mobile client where it was possible you could not login after an automatic logout without first restarting your browser
Upgraded to the latest build of the Keno UI files for the mobile client to fix an issue where you could not scroll/swipe left and right within a fields value
On the Password Folders screen within the Administration area, it was not possible to view permissions on a Folder unless your account already had permissions to it

Passwordstate 8.3 - Build 8361 (23rd May 2018)

New Features

Added support for SonicWALL firewalls for Account Discovery, Password Resets and Account Heartbeats
Added support for Fortigate firewalls for Account Discovery, Password Resets and Account Heartbeats

Made changes to email templates on the System Settings screen for Password Reset Portal, so you can specify HTML in the email templates if required
Firefox browser extension has been updated to use jQuery 3.3.1
Added a loading animation indicator for Reports from within the Administration area
Remote Session Credentials can now also be used to match the 'Title' field for Host records
Added better error capturing for unhandled exceptions
If only one mobile and one or more hardware tokens was assigned to a user in the Duo portal, Passwordstate will no longer show the mobile device option on the screen for selection
It is now possible to see the terminal history in SSH sessions with the browser based Remote Session Launcher by using the right-click button on the mouse
Updated MySQL Account Discovery script to ensure duplicate accounts were not discovered
Made changes to all database PowerShell scripts to better support the use of special characters within password fields
MySQL Password Reset script has been updated so a Privileged Account Credential does not need to be used to reset the password for an account

Fixed an inconsistent error when resetting Windows Services where it was possible the following error was returned - System.Management.ManagementBaseObject.ReturnValue
Fixed an issue where newly added non database related Host records may have been automatically adding into incorrect folders based on specified filtering options
Custom port numbers for MySQL were being ignored in Reset and Validation scripts
Fixed an error when trying to remove View permissions from individual records when using the Bulk Permission features

Passwordstate 8.3 - Build 8345 (29th April 2018)

Updated Features

Double clicking on a tab for the browser based remote session launcher will now make the session almost full screen in the browser
If a Host field has a Title specified for it to show in the Navigation Tree, then this Title will also show in tabs for the browser based remote session launcher
When leaving the Gateway URL field blank for a Remote Site Location, it will instead use the local gateway for any Host records from a remote site

Fixed an issue when saving and linking a Template to a newly created Password List via a User Account Policy, when the user did not have permissions to the Template
Fixed an issue with the browser based remote session launcher where logging out of a session would close all open tabs for the same host - if multiple tabs were open
Fixed an issue where the backup taken prior to an In-Place Upgrade could not complete the backup successfully as the file gateway.log.0 as locked
Fixed an issue with Azure AD and SAML authentication where the time format on the SAML request may not have been specified in the correct format, depending on OS settings
When a User Account Policy is copying settings from a Password List Template, the custom image selected for the List is not maintained after saving the Password List
Unlinking a Password List Templates was causing other Password Lists to be unlinked, when it shouldn't have been
Fixed an issue where the instructions for upgrading without Internet connectivity was still trying to query the upgrade xml file on the Click Studios web site
Issues with date search criteria on Bulk Update Passwords now fixed

Passwordstate 8.3 - Build 8334 (18th April 2018)

New Features

The browser based Remote Session Launcher Gateway is now deployed with the Remote Site Location agents, allowing remote access to devices over fire-walled environments
Added a new Windows service to the Remote Site Locations agent, so the agent can automatically upgrade itself

On the Remote Session Recordings screen, the domain or host prefix will now be displayed in the Authenticating Account column
Passwordstate Windows Service, and Agent Service, are now digitally signed
It is now possible to open multiple tabs to the same host for the browser based Remote Session Launcher

Fixed a bug where it was not possibly to apply 'All Users and Security Group' permissions to a Privileged Account Credential
Fixed an issue where newly added Host records may have been automatically added to a Host folder when it shouldn't have been - when filtering on a database server type
Fixed an issue where determining the name of the next recorded session file name for the Remote Session Launcher could have caused a JavaScript error during a manual launch
Fixed a Javascript error which was causing issues closing popup screens on the Host screen when adding documents or external links

Passwordstate 8.3 - Build 8325 (6th April 2018)

New Features

Added a new Questions and Answers verification policy to the Password Reset Portal
Added Password Policies to the Password Reset Portal to provide on screen instructions for the expected strength of the password to be used
Added Bad Passwords to the Password Reset Portal to prevent usage of certain passwords
Passwordstate Browser Extension now available for Safari

Removed the password field from the 'Request Access' pages
Remote Site Location Agent will now report back what Host Name the agent is installed on
Emergency Access login password can now be longer than 100 characters
Made changes to the Cisco Password Reset Script so it waits for expected responses before executing proceeding commands
Added an option where you can specify which users are allowed to use the Manual Launch buttons for the Remote Session Launcher(s)
Managed Service Accounts, and Group Managed Service Accounts, can now be added in as a User Account in Passwordstate so they can be used with the Windows Integrated API
Made some changes to the Windows Service reset script so it would not error if the Windows Service is currently disabled
The read only High Availability instance can now be accessed if the primary site is enabled for maintenance mode
Added an option to alert the user that remote sessions are being recorded when using the Browser based version of the Remote Session Launcher
Session Recordings for the Browser based Remote Session Launcher will now be automatically closed (ended) if the user navigates away from the active session to another page in Passwordstate
You can now display launch buttons for both Remote Session Launchers on the screen if needed
You can now also specify which users are allowed to use the Client based version of the Remote Session Launcher
If a user does not have access to a Folder or Password List when using the 'Toggle all Visibility' menu option, all context menus on these Folders and Password Lists will now be disabled
Renamed the IIS and COM+ reset scripts for consistency with the word Windows in the title
Updated to the latest build of PuTTY for the Client based version of Remote Session Launcher
Pasting of clipboard contents now works for SSH session with the Web based Remote Session Launcher
Email Templates now have no limits on the amount of characters you can insert into them
Updated HTML version of the manuals so you can navigate directly to certain pages if bookmarked
Added TCP support for sending Password Reset Portal Auditing data to Syslog servers
Host Discovery Job will not longer discover disabled computer accounts
Made improvements to the Cisco Discovery script to ensure it find all accounts on all iOS versions
Updated HTML version of the manuals so they are compatible with different operating systems
User's email addresses for the Password Reset Portal can now be edited by Security Administrators
Verification Policies in the Password Reset Portal can now be applied more than once for a user, but with precedence
Added logo branding to the Password Reset Portal
Fixed an issue with the Internet Explorer browser extension where is would cause errors on some pages which were running in 'Compatibility Mode'

Fixed an issue where the Allowed IP Ranges could produce an error for the Remote Site Locations agent, causing it to now communicate back to the API
Newly discovered accounts had the Heartbeat option enabled even though it was disabled on the Discovery Job
Fixed a bug in the Windows Integrated API where it could have reported a 'Object reference not set to an instance of an object' error for all calls
Fixed an issue where there appeared to be a space at the end of the Self Destruct Message when using the feature from the Tools menu
Fixed an issue where Session Recording may have caused the Manual Launch buttons for the Remote Session Launcher to fail
Fixed an issue where the JSON string returned from an invalid API call was malformed - it was missing a double quote at the end of the error message
Fixed an issue where the Browser Based Remote Session Launcher could not connect to pfSense Firewalls via SSH
Fixed an issue where the Pin Number Verification Policy for the Password Reset Portal was accepting any pin number
Fixed an issue with the Password Reset Portal where certain special characters were causing issues with enrolling and resetting user's accounts
It was possible you could not delete a security group if it was assigned to a Verification Policy for the Password Reset Portal
It was possible to create an API Key for a Folder, when the user had their permissions removed from this feature

Passwordstate 8.2 - Build 8284 (16th March 2018)

Updated Features

Local Account Discovery jobs now allow you to select which Password Reset Script is assigned to newly discovered accounts
Reset Scheduled Task Password script has been renamed to Reset Windows Scheduled Task Password
Add Dependency screen will now select the appropriate Reset Script automatically when you select the Dependency Type
Improved error reporting when for the Browser based Remote Session Launcher, when Remote Desktop is disabled on the client host

Fixed an issue in IE with the new Browser based Remote Session Launcher where a JavaScript error was preventing the Hosts screen from displaying
Fixed an issue where you could not drag and drop nodes in the Passwords tab between other nodes - only on top of them
Fixed an issue where the Add Password screen was still asking for a Host to be specified when it's no longer mandatory
Fixed an issue with the API with Allowed IP Ranges where it was possible the client IP address was being reported incorrectly
Install and Configure Browser extension button is now visible when a user does not have access to the Browser Based Remote Session Launcher

Passwordstate 8.2 - Build 8275 (14th March 2018)

New Features

New browser based Remote Session Launcher with Session Recording is now available

Made significant performance improvements to the Recent Passwords grid on Passwords Home
Remote Sessions to Hosts can now be initiated directly from the Passwords tab - for Local Accounts you have access to
Provided an option where it as possible to search and display Hosts in the Host Navigation Tree, if you do not specifically have access to them within a Hosts Folder
Made additional changes to web.config file to allow caching of static content
The IBM IMM password reset script has now been updated to allow the use of a Privileged Account credential, and better error capturing
Added better error capturing to the password reset script for local Windows accounts
Added Domain or Host field to Enumerated Permissions and Password Strength Reports
Added TLS 1.2 support in the Remote Session Launcher Powershell script for servers which have been hardened
Failed Password Reset and Heartbeat reports now only report on records where these options are enabled
Made some changes to the date check on the Password Reset Portal, to overcome an issue if there were date format differences between the SQL database and the portal Operating System

Fixed an issue where an old SQLLite dll was included in the latest build of the Remote Site Location agent
Fixed an issue here removing a Host record from a Folder under the Hosts tab would remove it from any Folders it was displayed in
If monitoring more than one Event Log for lockouts for the Password Reset Portal, it would error in the UI when checking the event log for a specific user account
The Host Discovery job could have found Hosts in AD if the OperatingSystem Attribute was blank - when OU recursing was used
Fixed a bug with the Auditing timestamp from the Passive Node of the High Availability instance - time was being offset from UTC
Fixed an issue where the installer of the Password Reset Portal would fail with a basic error on the screen
PIN with Mobile client wasn't working as expected when running the Forms based version of Passwordstate
Bulk Permissions was not working when revoking access for View Permissions

Passwordstate 8.2 - Build 8256 (19th February 2018)

Updated Features

It is now possible to use LDAPS when communicating to Active Directory
You can now specify the IP Addresses of trusted devices where you want the X-Forwarded-For header attribute added to HTTP requests - for Proxy Server and Load Balancers
Made some changes to the HP Procurve Reset script to perform an account heartbeat immediately after a reset, as Procurves do not report a successful reset
The Domain or Host field in Password Lists which are enabled for resets is no longer a mandatory field
It is now possible to perform Account Heartbeats on the Add/Edit Password screen for all appropriate account types
Added TCP support for sending auditing records to Syslog servers
Added a new System Setting option to choose the default checked status of the Enabled for Resets and Heartbeats checkboxes on the Add Passwords screen
Further protected certain pages from being accessed by typing URLs directly into your browser
Install and Upgrade log files are now deleted upon successful completion of each task
Check for New Builds button is now available on all upgrade pages

Issue with DUO SMS option when having multiple devices is now fixed. Instead of SMS being sent, DUO authentication was using a phone call instead
If Active Directory returns an error during the AD Security Group Sync process, members from the security group(s) will no longer be removed from Passwordstate
Fixed an error when accessing the Emergency Access Login after accessing the standard AD login page, when the user's AD account did not exist in Passwordstate
Fixed issue with linked templates where saving a new linked Password List could not work when clearing search filters

Passwordstate 8.2 - Build 8242 (5th February 2018)

Updated Features

Added a new Restricted Features feature in the Administration area where certain settings can only be enabled/disabled by contacting Click Studios for assistance
The Active Directory sync process now updates the email address for a user's account if any differences are found
Updated the Chilkat SSH Library to the latest build
Updated the HP Procurve Reset Script so that a Privileged Account Credential is not required to perform resets
Updated the iDrac Password Validation Script to use the Chilkat SSL library
Added a 'Add Host' button to the Hosts Home default page
Removed writing errors into the Event Log if a general error occurred in Passwordstate
Made some changes when Impersonating a user's account to disable certain elements within the Hosts tab
Updated the Juniper password reset script for improved error checking, and support of resets without the use of a Privileged Account Credential - for the root account
Fixed an error page on a Password List that had AD Authentication enabled - If a user does not enter in the domain it now displays more relevant information
Relaxed HMAC Hashing on Password List settings to allow bulk updates on certain settings if required

If accessing the Account Discovery menu while the focus was on the Administrator tab, then the Account Discovery Screen would not show
Fixed an issue where the LDAP filter on User Accounts and Security Groups screens where not working
Fixed an Sever 500 error after upgrading from a build prior to 7580, due to the 'customErrors' setting in the web.config file being duplicated
Fixed an issue when clicking on the 'View Members' of Security Group icon when there is no Security Group selected
Fixed an issue where Regex pattern matching for Bad Passwords was not working via the API
The System Setting to limit which users you can see when applying permissions to password records was not working on the Bulk Permissions for Individual Records screen

Passwordstate 8.2 - Build 8225 (22nd January 2018)

Updated Features

Updated the DELL iDrac password reset script for better error capturing of failed resets
Added further error checking and redirecting to a custom error page
Linux validation scripts changed to remove validations commands from shell history
Users with Modify Access to Password Lists now have the ability to view and restore passwords from the Recycle Bin. Users with View access can now view the Recycle Bin

It was possible the Custom Auditing scheduled report was not returning any results when it was meant to
Fixed an issue of an upgrade when SAML authentication was being used because of new fields in the database
Performing a Manual backup was still trying to backup SQL Server even though the option to exclude SQL was selected
Images that were uploaded with an uppercase extension were not showing on the Add/Edit Password List and Templates screens
Fix an issue with Linux privileged accounts containing the backslash character not being able to perform password resets
The Timer in the Handshake Approvals was not working as expected

Passwordstate 8.2 - Build 8215 (4th January 2018)

Updated Features

User Account Policies can now be ordered so that you can specify precedence over conflicting policy settings for users
Added a new System Setting option to hide the 'Password Last Updated' column for all Password Lists
Added a new System Setting option to only show Password List Administrators for the Handshake Approvers
Added a new feature where you can clone permissions for user's accounts in bulk
Made changes to Oracle Powershell scripts to prevent pooling of database connections
Made some compatibility changes to the Edge Extension for the Fall Creators Update, and minor changes to the Chrome extension

Fixed an error deleting a Password List if there was a Custom Auditing Report existing for it
Fixed an exception where cloning User Permissions for the RemoteSessionCredentials table would cause a failure
Fixed a bug on the Edit Report screen if it was for an Expiring Password or Custom Auditing Report for a Password List that had been deleted
A couple of menu items under List Administrator Actions was enabled when using the passive version of the High Availability instance

Passwordstate 8.2 - Build 8205 (15th December 2017)

Fixed

Fixed a bug when searching for Password Lists and Folders in the Navigation Tree - an exception was thrown

Passwordstate 8.2 - Build 8204 (11th December 2017)

Updated Features

Added support to the Remote Session Launcher for SQL Server Management Studio
Added an option on Discovery Jobs to report on all discovery activities, not just new accounts found
The account used on the backups and settings screen can now be linked to a password record
Made changes to prevent the use of multiple tabs open in your browser pointing to your Passwordstate environment - security enhancement
When the 'Check In Automatically' setting for password records is set to 00:00, then no automatic check-in will occur - this disables it
Edit Properties and View Permissions right-click menus on Password Lists in the Navigation Tree, are now disabled if an Additional Authentication option is applied to the List
Added a System Setting option to set the RADIUS username field on authentication screens to be read only
Made changes to the Handshake Approval process so the same approver cannot be selected twice
Added time based access to Remote Session Credentials
Added Time Based access to Privileged Account Credentials
Made changes to Remote Session Credentials so users without access to the linked Password record could not make any changes to the record
Added new auditing records for Remote Session Credentials
Add a new System Setting option to specify which Password Generator is used in the search toolbar at the top right-hand side of the screen
All Remote Session Credentials are now accessible from the Administration area
Added the Spell Out icon back to the Password Generator in the top toolbar
Add a new System Setting option to only show Templates on Add/Edit Password List screens if the user has been given permission to the templates
Added new System Setting options to restrict creation of Folders and Password Lists beneath parent folders, depending on your permissions to the parent folder

If you navigated to a second page in the Remote Session Credentials grid and then editing a record, it would display the wrong record
Fixed an issue with both APIs where you would get an error saying the PasswordListID was not found in the database when adding password records, if you first created the Password List via the API without copying any settings
Database Port label on Host remote session screen was showing the Remote Session port number
Cloning of Security Group permissions was not cloning for 3 tables
Clicking on the Tools icon was taking you to the Account Discovery screen, even though you had not been given access to this menu
Under certain conditions, a System Setting may have caused additional user permissions being applied to the creation of a new Private Password List
Fixed an issue accessing Password List Templates screen in the Administration area - incorrect role was being checked

Passwordstate 8.1 - Build 8180 (21st November 2017)

Updated Features

You can now associate a Cisco Enable password with a Privileged Account Credential, and Discovery and Reset scripts have now been updated to support its use
Windows Integrated API now supports checking in/out password records which are configured for exclusive access
All scheduled reports are now visible under Administration -> Reporting
Made a change in SAML Authentication to support Duo Access Gateway
Changed the System Setting for Toggling Visibility of Web API IDs so that either all users have access, or only users who have Modify or Admin access to the Password List
Made changes to the Check Out screen for password records to prevent two users checking out the record at the same time
Last selected node in the Navigation Trees will now scroll into view if there are more nodes visible off the screen - includes permalink navigation as well

Fixed an issue where a Privileged Account Credential may not have shown on a Discovery Job, if the Description field for the record was the same as another Privileged Account
Fixed a potential DBNULL bug with the Active Directory user account synchronization process
Fixed an issue with the Password Generator where disabled Word Phrases settings may still have inserted a dash into the generated password
Fixed an issue where the Update Password method in the API may not have included complete auditing details for the record being updated
Fixed an error when editing an Expiring Passwords Report when you had the 'Reporting' Security Administrator's role
Fixed an issue where reports from the UI or Windows Service could not be run if the System Setting 'Allow users to make calls to the Anonymous API' was set to No
Fixed a database integrity error message when adding users into a Security Group at the same time as adding the user's account into Passwordstate
Changing any settings for a Scheduled Report will not affect the execution time for One-Time Schedules

Passwordstate 8.1 - Build 8165 (10th November 2017)

Updated Features

SAML Authentication now works with Azure Active Directory
Made significant performance improvements to the report "Show which Passwords a User has Access to"
Have introduced a new Title field for Host records, and if specified, the Title will now show in the Hosts Navigation Tree instead of the Host Name
Added Permalinks for Hosts and Host Folder records
Software field for Host records has now been renamed to Notes, and will display a tooltip icon on the various Hosts screens
When adding a Privileged Account Credential, the user is now automatically give permissions to it
Made a change to the Password Reset Portal to try and overcome the error of "The server does not support the control. The control is critical" when the user resets their AD account password
Permalink on Password Folders can now be modified so it does not have to be the ID of the Folder
There is now a System Setting option to choose which email address Self Destruct Messages are sent on behalf of
Made changes to the Host matching feature on Host folders so you did not need to specify Host Types or Operating Systems

Fixed an issue where the Remote Site Launcher utility would not work on Operating Systems that were not configured for the English Language
Fixed and issue where auditing data may have been incomplete with one of the Manual Launch options
Fixed an issue where the System Setting option to create a new Private Password List for new User Accounts, was not selecting the URL field for the list by default
Fixed an issue where the URL field may have been showing on Add/Edit Password screens even though the fields was not selected for the Password List
When using SAML with the mobile client, clicking to view password records would result in only the loading animation showing

Passwordstate 8.1 - Build 8150 (1st November 2017)

Updated Features

Changed the requirement for Privileged Account Credential passwords to be mandatory, as in some circumstances for Linux accounts it's not required

Fixed a UI positioning issue with the top Global Search toolbar when logged in with the Emergency Access login account
Fixed an issue where the Windows Integrated API may have been able to return password records for a Password List the user only had Guest access to
Fixed an issue with SAML Authentication and the Mobile client where the screen was blank after authentication - only affected the embedded install of the mobile client

Passwordstate 8.1 - Build 8146 (30th October 2017)

Updated Features

Updated the Hosts field on various password screens so you can differentiate between different SQL Server Hosts that have the same name, but different instances
Updated the Remote Session Launcher utility so it does not require the .NET Framework 2.0 to be installed
Made some changes to allow caching of static files, but not dynamically generated ASPX pages

Fixed some UI positioning issues on OSX for the Global Search and Password Generator elements
Fixed an issue where under certain circumstances having multiple tabs open in your browser could have provided access to credentials your account had not been given specific access to
Fixed an issue where a Dependency Discovery Job was reporting 'Unknown Account Types' when domain accounts from a different domain where discovered compared the the domain selected on the discovery job
Fixed an issue where testing of PowerShell scripts through the UI would fail if any password fields had a single quote in the password value
Fixed an issue where it was possible to import a 'Contact' from AD into Passwordstate when adding user accounts manually
Fixed a bug when searching to add domain accounts to the Password Reset Portal when a 'Contact' was found in the search results
Some API methods where not honouring any Allowed IP Address restrictions

Passwordstate 8.1 - Build 8136 (19th October 2017)

New Features

Edge browser extension now released

Made a change to the Scheduled Task Password Reset Script to help with a Microsoft bug with Tasks created on Windows Server 2008 and Windows 7
Devolutions Remote Desktop Manager now integrates with our Windows Authenticated API
Added support for API Keys in the Header request when using Devolutions Remote Desktop Manager integration
Made changes to the Copy To Clipboard feature in the Passwords grid to support Unicode characters in the password
Made changes to exporting Auditing data so only the contents of the displayed grid where exported
When exporting passwords for the Bulk Update feature, we have removed some additional columns which where not required in the export
You can no longer delete an Active Directory domain if it is the only domain in the system
Added a link in the 'Access Request' email which is sent so the user can navigate to the Pending Access Requests page
Added some better error reporting if TLS 1.2 was disabled on the Passwordstate web server
The Linux Password reset script has been improved to handle special characters in the passwords
Added additional error reporting to the Windows Local Admin reset script when remoting into a Host using a Local Administrator's account, and not a domain account

Fixed an issue with SSH for the Remote Session Launcher feature as the SendKeys Class in the .NET Framework did not support certain characters
Fixed the following error when re-uploading a document - Operator '<>' is not defined for type 'DBNull' and string
Fixed an error in the Passwords tab when viewing visibility of all Password Lists, while a specific System Setting sorting option was set
Deleting an External Link from a Passwords Folder was not working
Fixed a CSV Import issue when trying to import into a Password List which belongs to a Remote Site Location
Fixed an issue with the SQL Server Password Reset Script where it would fail if the SQL Account had a dash character in the Username field
Under certain conditions, clearing one notification in the Notification Centre could have cleared all for the specific type of notification
Fixed an issue with Enabling Maintenance Mode when logged in as Emergency Access
Fixed a positioning issue with the eraser icon for the Global Password Generator when using custom logos with greater than default height
Fixed an issue where it was possible to select a Folder with the Copy/Move Password feature when using the Load On Demand feature

Passwordstate 8.1 - Build 8114 (27th September 2017)

Updated Features

Reintroduced the ability to search for passwords in a folder
Re-introduced the random password generator near the global search textbox
Added all Duo Authentication options to the Password Reset Portal's Verification Policies
Made changes to SecurID authentication where the user can no longer change their SecurID User ID during the authentication process
Pending Access Request Notifications will now automatically be added back if the user accidentally dismissed the notifications without processing them
If the user's account in the Duo Portal is set to Bypass, it will allow them to authenticate to Passwordstate without performing the various 2 factor authentication methods
Mac Discovery Jobs no longer assign the Privileged Account to any discovered accounts
Added a report to show which password records are associated with a Host record, and provided the option to delete the Host record even if there are linked credentials
Provided better error reporting for the Windows Integrated API when all users were denied access to use the API
Made some changes to the API for charting in Passwordstate to assist with potential SQL deadlocks

Fixed an issue where the Remote Site Location Agents may have intermittently reported a 'Padding is invalid’ error back to the Error Console
Fixed some auditing inaccuracies for the mobile client during the authentication process
Fixed an issues where Forms based authentication for the mobile client was no longer working
Fixed an issue for Duo Authentication if a user had a Hardware Token assigned to their account in Duo - a 'key was not present' error was displayed during authentication
Fixed a SAML Authentication issue when the user had special characters (Scandinavian) in their account details at the SAML providers end
Fixed an issue where using the 'Active Directory Actions' features for an AD account would raise an exception when clicking the Save button
When editing an Active Directory account which is configured for resets, if you deliberately remove the Domain field value you receive an error when saving the record

Passwordstate 8.0 - Build 8097 (15th September 2017)

Updated Features

Added all Duo Authentication options to the Passwordstate UI and Mobile Client
Firefox Browser Extension is now compatible with the 64 bit version of Firefox
Firefox Extension now works with Multiprocessor support
Made some changes to Dependency Discovery Job to overcome a changes in Server 2016 and Windows 10 where the domain portion of a Scheduled Task account was not available

Fixed an issue where upgrading from version 7 to version 8 while SAML Authentication was enabled would result in an error preventing the database upgrade process executing
When the HA module was being used in Passive Node configuration, an error about trying to update the database occurred when validating the Password Reset Portal license

Passwordstate 8.0 - Build 8091 (5th September 2017)

Updated Features

Auditing data for Private Password Lists will no longer be sent to syslog servers
When accidentally adding text instead of an integer in the "Database Port" field on a host, it now displays a validation warning on the screen
Updated favicon.ico file and made some changes to Passwordstate site icon when pinning on various devices
Adding some additional debugging for Remote Session Launcher to help troubleshoot API Key Not Found error
Username button in top header is now disabled if the user has the Preferences screen disabled/hidden for them
Added an option to ignore or configure the Health Check Alert for database transaction log file size
In-Place Upgrade feature will now work with SAML Authentication on the second part of the upgrade process
Now added additional SAML 2 Authentication options for the High Availability site
Added robots.txt file to prevent indexing by search engines

Editing a Local Administrators Discovery Job was not showing any available Password Lists
Fixed an issue where User Accounts where not being deleted as part of the AD Synchronization process, when the accounts no longer existed in Active Directory
Wrong type of Virtual Machine type was being displayed on the Host screen
Additional Parameters for RDP Sessions for Remote Site Launcher was not working
Passive High Availability instance was not sending auditing or email data across to the primary site properly
Fixed an issue where passwords resets on linux root accounts were no longer working if the Privileged Account Credential was selected for the Account Heartbeat feature
Fixed an issue where a few calls to the API from the Passwordstate UI would fail when only TLS 1.2 protocol was enabled on the web server
Global search for passwords was not working if a Password Folder was selected
Remote Site Agent was adding a blank password record into a Password List when trying to discover Local Admin accounts on a Domain Controller
Fixed an issue where it was possible that a Folder with a blank Folder Name could be created
Could not copy or move any password records when Load On Demand feature was enabled as it was reporting to 'Select a Destination Password List'

Passwordstate 8.0 - Build 8071 (22nd August 2017)

Fixed

The Host Type and Validation Script ID was not being assigned to Discovery Jobs as part of the upgrade process from version 7
When Adding/Editing a Host Discovery Job, it was possible Privileged Account Credentials were showing when you were not give explicit access to them
Favicon.ico was not showing in browser tab for Mobile web site
If two Remote Site Locations had the same Host Name for a host, then it was possible a Host discovery job would not discover the same host name - as it already existed in the database
Corrected a SQL Server case sensitivity issue with file data_updates_build_8000.sql
Made some changes to the edit screen for Local Admin Account Discovery Jobs, as it was possible a message about no Privileged Account Credentials being available was displayed, even though there was one available in the dropdown list

Passwordstate 8.0 - Build 8065 (15th August 2017)

Updated Features

Made changes to the Password field on User Accounts screen in the Administration area, so the masked password is no longer shown in the textbox

Clicking on the Preferences menu would result in an error when using the Forms-Based Authentication version of Passwordstate
If specifying your own color branding on your Preferences screen, the hover colors for the Notifications, User and Logout buttons where not working as expected
Fixed an issue where upgrading from a build prior to Build 7185 could have resulted in a 'The fractional part of the provided time value' error
HTML version of the User Manual was not in the standard branded color/style format
When upgrading to version 8, the database schema upgrade would fail at sp_rename() due to case sensitivity being set for SQL Server
Fixed an issue with the Host Record Permissions weren't working as expected - it was allowing you to make changes to a Host record

Passwordstate 8.0 - Build 8058 (14th August 2017)

Updated Features

It was possible the Host Discovery Job was not recording the DNS name for discovered Hosts - this applied to both the Windows Service and Passwordstate Remote Site Locations Agent
The Passwordstate URL is now automatically added to the global excluded URLs for the Browser Extension feature
All newly created Private Passwords Lists will now have the URL field selected by default
Added FIPS encryption support for the Remote Site Location Agent
Add a new option for the Password Reset Portal where a domain dropdown list can be displayed on the portal screens
Made changes to Passwordstate so all modules will work when only TLS 1.2 is enabled on the web server, and all other protocols disabled
Fixed an issue with Forms based login accounts where adding a new Password List would error just after the user reset their password
Load On Demand and other Navigation Tree settings are now available in User Account Policies
The Remote Session Launcher installer has now been changed so that it works for any logged in user and not just for the person who installed it
Added support for Windows Storage Server 2016 Standard host records
Renamed the Administrator menu called Menu Access to Feature Access, and consolidating various feature permissions onto this screen
Extended the HTTP Runtime execution timeout value to support long running processes like adding thousands of users into Passwordstate
Made significant performance improvements to the Recent Passwords grid on Passwords Home if the user had thousands of relevant auditing records for their account
Renamed License Keys for Password Reset Portal and Remote Site Locations

It was possible that the last selected Host record was not being automatically selected when logging into Passwordstate
It was possible to see API Key and Field values for non List Administrators when the System Setting option was set to only show this to List Administrators
It was possible that when importing user's accounts from Active Directory, the Office or Department field may have duplicated a value onto different accounts
Hosts and Dependencies discovery jobs was not showing relevant data if the Site Location was changed for a Job
Under certain conditions, the Bulk Copy/Move feature for password records within the Administration area could have resulted in an exception
When adding in a Security Group in the Password Reset Portal, the on screen notification would stay visible permanently until the screen was refreshed.
Some of the menu paths in the Setup Wizard Complete screen for the Password Reset Portal where inaccurate

Passwordstate 8.0 - Build 8037 (10th July 2017) - Beta 2

Updated Features

Added a new 'Load On Demand' feature for Nodes in the Password List and Hosts Navigation Trees
Added the Activity field to the Recent Activity Grid underneath the Passwords Grid
Provided a System Setting for sorting options in the Passwords navigation tree
Selecting a default Password List/Folder to return to in the Navigation Tree has now been deprecated
Renamed 'Edit Password List Settings' to 'Edit Password List Properties'
Added more context menu items to Password List navigation tree for viewing permissions and editing properties
Added Content Delivery Network (CDN) support for downloads during In-Place Upgrades
When adding/deleting Host records, we now automatically refresh the Hosts Navigation Tree upon saving
Added extra Password Reset related fields to All Passwords Report if the Password List was enabled for resets
Removed some longer durations from the report 'What has a user been doing lately'
Upgraded to Telerik ASP.NET Build 2017.2.621 to resolve Cryptographic Weakness
Adding extra debugging into the Passwordstate Windows Service if there is an error querying event log data for the Password Reset Portal module
Made some changes in the Recent Activity Grid to better split long URLs to prevent horizontal scrollbars showing
Fixed a few spelling mistakes on various screens
Added Password Reset Portal installer and instructions within the Passwordstate folder

Manual Heartbeats for Linux accounts were not working when no Privileged Account was selected
The option to collapse all Password Lists and Folders in the navigation tree by default was not working
An exception occurs when trying to import passwords in a Password List - due to the Heartbeat schedule changes for Remote Site Locations
When the 'Actions' toolbar was set to display above the passwords grid, the Documents button was not disabled when the System Setting to prevent uploading of documents was enabled
The Provide a Reason screen for password records was erroring if the password had certain special characters in it
All Passwords Report was showing Unmanaged field for Host when it was not meant to
Fixed an issue where the PasswordList field in 4 tables was not set to the size of 200 characters like it was meant to be for the PasswordList table
Fixed an issue where editing a Host Discovery Job could have selected the wrong Active Directory Domain account
The Hosts Discovery Job was adding in Hosts which had previously been added into Passwordstate manually
Fixed an issue where certain special characters in the password for a Linux root account was causing Heartbeat validation to fail
When a Hosts Folder has a filter on it to add Discovered Hosts into the folder, if more than one Operating System was selected the Hosts where not added in
When editing a Hosts Folder, any selected Operating Systems for adding Hosts into the folder, was not being selected in the dropdown list
Exporting all Passwords from the Admin area was resulting in an exception in Internet Explorer and Firefox
The new option to Bulk Delete Password Records from a Password List was enabled when navigating from the Administration area
The new Bulk Password Resets feature may have thrown an error if the user did not have access to any Password Lists
Clicking on the Show Password Icon for Syslog Server password on System Settings screen was displaying the password from a different field
During a new install of the Version 8 Beta 1, it was not creating a Reporting API Key automatically, causing the new Reporting section in Administration to fail
Fixed some display UI issues on various screens
During a new install of Version 8 Beta 1, all users were not given access to the Hosts section within the Hosts tab
Modified the Telnet connection parameters for Remote Session Launcher as it was not populating the Username field for some customers
Fixed an issue where non Security Administrators could not add/edit any scheduled reports
It was possible to show the 'Check Password' icon for password records related to a Remote Site Location

Passwordstate 8.0 - Build 8000 (19th June 2017) - Beta 1

New Features

Add a new Password Reset Portal feature allowing users to reset or unlock their own domain account without the need of calling the IT Department
Add a new Remote Site Locations feature for MSPs, which allows deployment of an agent to perform Account Discoveries, Password Resets and Account Heartbeats over HTTPS
MSP's clients can now log in and view their Passwords without having to consume a Client Access License
Added a new process for when technicians/staff leave, so you can easily identify what passwords they have access to, and easily queue multiple passwords resets if required
Added a new Active Directory integrated version of the API which does not require the user of API Keys
Various different types of records can now be tagged specific to a Site Location, to be used in conjunction with a Remote Site Agent
Redesigned and added many more pre-defined reports
Remote Session Launcher feature has now been redeveloped, and also supports Teamviewer remote sessions
Added many more authentication options for the mobile client
Added New Notification Centre to provide relevant alerts to users
Added a new Account Discovery Job for Oracle database accounts
Added a new Account Discovery Job for Cisco IOS accounts
Added a new Account Discovery Job for HP H3C accounts
Added a new Account Discovery Job for Juniper Junos accounts
Added a new Account Discovery Job for MySQL accounts
Added a new Account Discovery Job for Microsoft SQL accounts
Added a new Account Discovery Job for Linux accounts

When impersonating a User Account, you can no longer access the Administration Menu for that account
Active Directory Authentication screens will now remember the last Domain selected from the Domains dropdown list
Host records now have additional fields which can be populated, including IP Addresses, Virtual Machines, etc
Folders screen has now be redeveloped, and documents can be uploaded to them, as well as linking to external URLs as well
Made various improvements to document management for password records, Password Lists and Folders
Depending on the document type, documents can now be viewed in your browser instead of having to first download the document
Updated documents can now be uploaded, instead of first having to delete the existing document
You can now limit the size of documents which are uploaded, including the file type
Remote Session Launcher credentials can now also exclude certain hosts from the query
Expiring Passwords Report can now filter on selected Password Lists
Scheduled Auditing report can now filter on the User who created the audit event, as well as filtering within the Description field
You can now delete password records in bulk from a Password List
Added SHA256 bit Certificate Support for SAML Authentication
Account Discovery Jobs now have further filtering for which Host records to discover against
All PowerShell scripts have been moved to the Administration area, and permissions on scripts are no longer required
Added various different color themes for the Mobile Client
Account heartbeats for Linux can now use the Privileged Account to perform the heartbeat, instead of their own credentials
Horizontal Navigation Menu option at the bottom of the page has not been deprecated
Upgraded to Latest Telerik Controls
There is now a one-to-one mapping of Security Administrator roles to Administration menu items
Redesign Administration area for new modules
Password Reset and Account Heartbeat scripts no longer require permissions to be applied to them
All Cisco passwords reset scripts have now been consolidated into one script
All Linux passwords reset scripts have now been consolidated into one script
Active Directory Domain records can now be marked to indiciate whether they will be used for authentication in the Passwordstate UI
Any stuck records in the Password Resets Queue can now be manually deleted
When search for passwords via the API, the joining criteria for searching across multiple fields has now been changed to AND

Fixed the wrong Account Type image being displayed in the Mobile Client for password records - it was instead showing the image from the Password List
Under certain conditions, uploading documents where not being automatically removed from a temporary folder
Fixed an issue where a logo of reasonable height may have caused issues with scrolling to the bottom of the Password Lists navigation tree
Fixed an issue where a Password List name greater than 50 characters was causing an error adding data into certain tables
When searching for passwords in the API, if searching on the HostName field it could have returned more records than there should have been a match for

Passwordstate 7.8 - Build 7883 (29th May 2017)

Updated Features

When creating Password Lists via the API, you can now specify a Guide and ImageFileName as well. Guides can also be specified for newly created Folders
Auditing data sent to Syslog servers now has its date specified in Universal time format as per RFC 5424
When adding and updating password records via the API, you can now also specify the Browser Extension Form Fields
You can no longer copy or move Shared password credentials into Private Password Lists
A 'Password Moved' auditing record is now also added into the Source Password List when a record is moved between Password Lists
The Email Temporary Pin Code authentication option for the main Web UI also now includes the Pin Code in the Subject Line, just like the Mobile Client does
Fixed an issue where some scheduled tasks may not have triggered if scheduled in the AM
Made some changes to the sending of emails to resolve any potential multi-threading issues
The ability to send Self Destruct Messages via the Administration area has now been disabled
The title you give Password Lists has now been increased from 50 to 200 characters

Fixed an issue where SAML2 authentication was not working as expected when Anonymous Authentication was enabled for the site, and alternative authentication was being used for Allowed IP Ranges feature
When trying to create a Private Password List via the API, and copying settings from a Template, a 'database integrity issue' error was being reported
API Documentation said Hosts API Key could be specified in the POST Body content, but API was not supported this. API has been updated now to also support this method.
Global search was not finding any records when searching on just the Password List name
API Restrictions settings on a Password List was preventing successful completion and auditing when adding new Password records

Passwordstate 7.8 - Build 7868 (11th April 2017)

Updated Features

Updated the Chrome Browser Extension to reduce function calls every time the DOM changed
Password Visibility Button Privileged Account Credential screen is now hidden if the credential is linked to a password record
Users will no longer be able to convert Private Password Lists into Shared, if they not have the required access to create Shared Lists

Viewing properties of a Folder when you only Modify rights was giving an insufficient permissions error
Administering permissions through the Administration area, when not having Admin rights to a folder has now been fixed

Passwordstate 7.8 - Build 7863 (17th March 2017)

Updated Features

Linux Reset Script now supports resetting of root account if no Privileged Account was set
Self Destruct Messages now have more options for time out periods
Made some changes to prevent client side caching of pages to prevent any issues with users using the back button in browsers
Improved Discovery jobs which were adding in a value for the Expiry Date field, when the option Default Password Reset Schedule for the Password List was not enabled

Under certain circumstances, the Password List page would not render if using one of the additional authentication methods for the List
When logged in with the Emergency Access account, and exporting all passwords, an error was generated regarding password strength
Bad Passwords recorded with capital letters were allowed to be saved, which has now been fixed
Under certain conditions, having excluded characters for a Password Generator Policy were remaining excluded, even after removing the setting
The Scheduled Report for Password List Permissions was not showing the permission values

Passwordstate 7.8 - Build 7854 (10th February 2017)

Made some changes to the Recent Passwords grid on Passwords Home and Folders to resolve occasional issues with database query time outs
Made some changes to the 'Provide a Reason' feature so the password is masked by default
Made a change to each of the 3 browser extensions to mitigate a phishing attack redirecting traffic to a malicious website, and disclosing web site credentials
Made further improvements to prevent users from typing specific AD based login pages URLs directly into the browser address bar

The authentication screen mid-upgrade would not allow you to login if your password contained certain special characters - .NET Framework was preventing this
Fixed an issue with "Grid Layout Actions", which was returning an unknown error on Documents screens
Fixed an issue where Password Validation Scripts where not processing any Generic Field values sent to the script

Passwordstate 7.8 - Build 7847 (27th January 2017)

Made further performance improvements when searching for Password Lists in the Navigation Tree
Made further improvements to prevent users from typing specific forms based login pages URLs directly into the browser address bar

Fixed and issue on some feature permission screens where removing a single user account also removed all users from applied permissions list

Passwordstate 7.8 - Build 7844 (20th January 2017)

Password Resets, Account Heartbeat, and User Account Authentication now works for non-trusted Active Directory Domains
The option to Hide Passwords in a Password List is now only applicable to users with View or Modify permissions
Added additional error checking for resetting the password on an Active Directory account if the Privileged Account Credential does not have sufficient privileges
You can now also apply permissions to individual password records if a top level folder is propagating permissions down
Removed the option to create new Password Lists from within the Administration area
When a User Account Policy is set to based Password Lists settings off a template, the user can no longer select the option 'Copy Settings from a Template'
When a successful password reset occurs, we now also set the Account Heartbeat status to successful as well
Microsoft SQL Password Reset Script no longer requires privileged account associated with it to perform a successful reset

Fixed a search filter issues on Hosts screen when sorting columns in the grid
Fixed an issue where uploading a 0 byte document would cause an error
Was receiving an error when saving a password record, if Account Type of Active Directory was selected, but the Password List was not enabled for resets
Certain Password List related auditing Activity Types were missing from scheduled reports when creating a report based on auditing data
The Import Passwords feature was not available on a Password List if the user had Modify rights
Password used for account used to send email was being cleared when clicking the Test Email button, if it had not previously been saved

Passwordstate 7.8 - Build 7830 (2nd January 2017)

Added additional debugging to the Account Heartbeat validation process
Added all minutes to the schedules on the 'Bulk Update Password Reset Options' screen

Redirection to the unauthorised web server page was not working if one of the "manual" authentication options was selected
Removed old "Password Reset Results" and "Password Validation Results" Email Templates as they are no longer used
The option to validate an AD account password was correct before performing a password reset was not working

Passwordstate 7.8 - Build 7825 (29th December 2016)

The new Build Number notification was not showing for "All Users" when it was supposed to be
Fixed an issue where it was possible to bypass your AD Credentials on the Manual AD and Duo Push authentication screen
Using the options on the 'Active Directory Options' tab on the Edit Password screen was giving a "Index was outside the bounds of the array" error
When adding a user to a local Security Group via the Actions Menu, it would error when filtering on security groups

Passwordstate 7.8 - Build 7821 (19th December 2016)

Fixed an issue where certain buttons where enabled when viewing the properties of a folder which should not be if the user has Modify rights
Fixed an issue with the Internet Explorer Browser Extension where it would cause the browser to crash with certain sites

Passwordstate 7.8 - Build 7819 (14th December 2016)

Overcome a jQuery bug for Internet Explorer and Edge which was preventing expanding and collapsing multiple nodes at once in the Navigation Tree
Fixed an issue where cancelling the dragging and dropping of a Password List in the navigation tree still allowed the List to be moved

Passwordstate 7.8 - Build 7817 (9th December 2016)

Made some significant improvements to the loading times of the main Navigation Tree, as well as expanding/collapsing nodes, and drag and dropping nodes around the tree
Added a User Account option to limit the number of Password Lists and Folders retrieved and displayed in the Navigation Tree
When search for Password Lists in the Navigation Tree, the folder structure to the found Password Lists is now shown
Tooltips on Folders and Password Lists in the Navigation Tree have been removed to improve loading times
Made some changes to the Authorized Web Server check to overcome intermittent DNS lookup issues some customers where having
Self Destruct messages can now be sent from the user rather than the default email address in System Settings

When sending a Self Destruct Message, the Subject line from the Email Template was not being used
Fixed an issue where it was possible to return back to the last Setup page for Passwordstate after the setup was complete
When using FIPS encryption, a database connectivity error screen was displayed when trying to validate the High Availability License Key
It was possible a Bad Password could also be reported on the screen as having Excellent strength
Fixed a database integrity error after importing user accounts via CSV files, and the UserID and Email Address for the user had capitalization in it
Fixed an issue where the Active Users screen would error if a UserID had a single quote in it
Fixed an exception where a custom Reset script could not be deleted
Fixed and issue with the Bulk Updated Password Reset Options feature, where deselecting the 'Managed Account' option would also disable the 'Heartbeat Options' tab
Fixed an issue where the Passwordstate Windows Service could not decrypt the AppSettings section of the web.config file when using FIPS encryption
Fixed an issue with SQL Server case sensitive DB settings and permissions not being applied to new Password Lists when new user accounts where being added
Fixed unrecognized date error on Maintenance Mode screen when using Greek language for Windows operating system
When viewing a Self Destruct Message, the whole value of the password may not be visible if it contains certain special characters
When importing Hosts, and the value for the database port was not a numerical value, it would report a successful import when it didn't actually import anything

Passwordstate 7.7 - Build 7798 (17th November 2016)

Updated the Security Administrators screen to also show the UserID value for any user accounts
Documents uploaded to Passwordstate are now encrypted
Fixed a issue where Password Lists being created for new User Accounts via User Account Policies will now work when using Security Groups as permissions on the UAP
Added Windows Server 2016 as supported operating System
When a Private Password List is converted to shared, it will now also honour the setting to add permissions for other Security Administrators

When using API to create a Password Record, the host name wasn't being set correctly if the record was not being configured for Resets
Fixed an issue where it may have been possible to receive an invalid date error when exporting all passwords
Users were unable to clone a folder if they had modify rights to it
Fix an issue when dragging and dropping nodes in the Navigation Tree where it was not possible to scroll all the way to the bottom when there were many Password Lists and Folders

Passwordstate 7.7 - Build 7789 (18th October 2016)

Added Account Type into API when retrieving, adding or updating a Password Record
Added an new method to the API to search for Shared Password Lists
Updated the Password List Export option on the screen Administration -> Password Lists, to export more information including API Keys
System Setting to enable or disable Auditing when using API added
The feature where you can bulk update password reset options for records has now been updated so you can filter records using a certain Privileged Account for it's resets
Users will now be alerted to any Wildcard searching when querying Active Directory on the User Accounts or Security Groups screens

Fixed an issue where the Backups account was trying to make database connections during a scheduled backup when the site was configured to use a Managed Service Account for DB connectivity
Some Date/Time columns on the User Accounts screen where not honouring Locale settings
Fixed an issue where Date fields for exporting CSV files may not have been exported in the correct date format for the selected region
Fixed a 'Index was outside the bounds of the array' error when exporting Hosts records
Using One Time Access with the Check in/Check out feature was removing access to the record before it should have
Fixed an issue where it was possible Account Heartbeats were occurring when the option was not enabled for a record
Users had the ability to created Password lists in folders they did not have access to
Usage count on Password Reset Scripts screen was not counting correctly for some scripts
Last logged in date and successful login auditing data was not being added when using one of the Active Directory, or One-Time Password authentication options
Opening Password records from the Expiring Passwords calendar using IE or Firefox was causing a 'server error'.

Passwordstate 7.7 - Build 7773 (20th September 2016)

Fixed an issue where an invalid table name was being referenced in the Passwordstate Windows Service, preventing the service from performing its normal operations

Passwordstate 7.7 - Build 7772 (19th September 2016)

Added SecurID two-factor authentication to the mobile client
Added some debugging for any issues trying to send a temporary pin code as part of this authentication feature
When using the Remote Session Launcher feature from a password record, we now automatically change the Port Number depending on what Connection Type you choose
Multiple Login dialog for the browser extensions now sorts the Username field

Fixed an issue with the Bulk Import Password feature where it reported the PasswordListID value could not be found for all password records
If the Privileged Account credentials for manually synchronizing the memberships of security groups was incorrect, then the Security Group was deleted
If the value of the password for the Backup feature had certain special characters in it, it could have caused the In-Place Upgrade feature to fail
The Cancel button on the In-Place Upgrade screen was not working if the backup password was using certain special characters
Disable Propagation button was still active when user only has View rights to the folder

Passwordstate 7.7 - Build 7763 (3rd September 2016)

API has been updated so you can search passwords by AccountTypeID or AccountType, and Domain and HostName fields are now returned in password queries as well
The Mobile Client has now been updated so the UserName field either shows the Domain or Host Name information as well if relevant
The Local Administrator Discovery Job will no longer report an error if it finds no administrator accounts on a host
Mobile Client has been updated for improved search across multiple fields, the same as the main Passwordstate user interface
HP iLO password reset script was named incorrectly
VMWare ESX password reset script has been updated to optionally use a Privileged Account for SSH connection
Changed Duo Push read-only username field to ignore client side changing of the value
Made some improvements to ensure Duo API Settings where not visible when inspecting HTML for certain pages
Added the option to specify a 'Guide' for Folders as well, including a button to view the Guide per Folder
Editing a user requires you to have a last name entered, where as it doesn't require it when creating a user

Fixed an issue where on occasion you could have been prompted to with the message "Please enter a positive integer value for the Add Days to Expiry Date field" when saving a password record
When editing a password from Passwords Home or a Folder, it was possible that Reset and Heartbeat Options tab may have, or may not have shown correctly for the selected record
Fixed an issue where manual backups were not honouring the "Exclude database" setting
When clicking on the Password List Guide button, scrolling within the popup window may not have be working correctly
Certain field and buttons where available on the Edit Folder screen when the user only had View permissions

Passwordstate 7.7 - Build 7748 (19th August 2016)

When using the Expires Now feature, the Expiry Date on the password will be updated according to the setting on the password record, or its Password List

Fixed an issue where you could not create a Folder beneath a folder structure which is propagating permissions down if you did not have Admin rights to the parent folder
Fixed an issue where it was possible to execute a HTTP Post against the Test Script Manually pages, even though you did not have permissions to the appropriate menus
Fixed an error of 'Globalization is ambiguous' error after upgrading to Anniversary Update for Windows 10
Fixed an issue where changing the value of a password may have shown the message of Password Reset Tasks Queued, when the Password List itself did not have the Password Reset Enabled option selected
The Passwordstate Windows Service was excluding Special Characters when generating a random password when using a Pattern Match

Passwordstate 7.7 - Build 7742 (11th August 2016)

The API has been updated so you can search for records based on HostName, ADDomainNetBIOS and PasswordResetEnabled
When adding an account and you deselect the option to enable it for Resets, it will now pre-select the appropriate Password Validation script

If this Password field was not selected on a Password List, it would not allow you to save adding a new password record
The Security tab on Add/Edit Passwords screen should not have been visible if the Password Field was not one of the selected fields
A 'Server Error' screen may have appeared in the Administration area if the Password List or System Settings Security Administrator role was not applied for the user

Passwordstate 7.7 - Build 7737 (7th August 2016)

Account Dependencies discovery job will now report if the account associated with a Windows Dependency as changed
Account Dependencies discovery job will now find AD accounts which are configured in the naming format of DomainFQDN\UserName

Fixed an issue where expanding/collapsing a node in the Navigation Tree could have caused it to re-position to the top of the screen
With the new option to reset passwords when discovered for Local Admin accounts, it was not honouring the setting for a static password value
It was possible for a One-Time Scheduled Report to execute if it was disabled

Passwordstate 7.7 - Build 7732 (4th August 2016)

The Brutce Force Lockout screen now provides a CAPTCHA control for allowing the user to re-attempt authentication if the pass the CAPTCHA authentication
Duo Push Authentication now sends the client's IP Address as a parameter to the Auth API method
Only 7 days worth of AD Security Group synchronization debug data is now retained
When moving/copying a password record you can now expand/collapse folders

Fixed potential XSS issue for an elevated security breach on the domain where data was modified in transit
Dependencies column was showing for in Password grids when the Password List was not configured to perform Password Resets
Fixed an issue where the correct CSS file was not used when viewing a Self Destruct Message
Fixed an issue where the Unauthorized Web Server page may have been displayed if the server's NetBIOS name was longer than 15 characters
The Add Password API method may have failed if the new PasswordResetEnabled parameter was not specified

Passwordstate 7.7 - Build 7723 (2nd August 2016)

If the UserName field for an Active Directory account which was enabled for resets was configured incorrectly, an 'Index Array' error could have occurred during the upgrade to build 7721
After upgrading to build 7721, some users may have experienced a generic 'Server Error' if they had previously had their access removed from the Hosts and Queued Password Reset main navigation menu items

Passwordstate 7.7 - Build 7721 (1st August 2016)

Added support for password resets and validation for Juniper ScreenOS firewalls
Added support for password resets and validation for Juniper Junos devices
Added support for password resets and validation for HP Procurve switches and routers
Added support for password resets and validation for HP H3C switches and routers

Added a new queuing system for Password Resets, and no data is updating in Passwordstate unless a successful reset is completed
Simplified the process of configuring accounts for Password Resets
The API has been updated to allow configuring password records for Resets and Account Heartbeat validation
Browser Extension for Internet Explorer is now out of beta
Made some improvements to the Navigation Tree so you can scroll up and down the tree when dragging and dropping Folders or Password Lists
Made various performance improvements to the Navigation Tree and selecting Password Lists when users have access to thousands of Password Lists and Folders
Scheduled Reports can now be run on a more frequent basis, and there is an option to run the report immediately
Remote Session Launcher now supports the use of local accounts for RDP sessions
When a password reset fails, the Expiry Date field is now no longer modified, and retry attempts will be made every day at the scheduled time
Added support for Microsoft SQL 2016
Host records can no longer be deleted if the Host has associated password records
The previous one-to-many relationship between password records and host records has now been deprecated
Permissions on custom Password Reset scripts are no longer required to associate the script with a password record
Added Connection Type and Port Number columns onto the Remote Session Credentials screen
The Oracle password reset script no longer requires the use of a Privileged Account Credential to connect to the database
You no longer need to modify any PowerShell scripts for Oracle to specify the path to the Data Access Components - the path can now be specified within Passwordstate on the System Settings screen
Various menu items under the main Hosts menu have now been renamed
The Hosts main menu has now been renamed to Resets
Hosts & Password Resets area within Administration has now been renamed to Password Resets
Renamed the Host Type of Appliance to Firewall
The option to reset a password when One Time Access is applied to an individual password record, has now be deprecated
When using Duo Push, hitting the enter key on various fields can now cause the push notification to be sent
The Import button on the Password List screen has now been move to the List Administrators Actions dropdown list
When adding an Active Directory account into a Password List which is enabled for Password Resets, it will prevent you from saving the record if the account exists in another Password List
It is now possible to trigger a Password Reset upon a new account being discovered on the network
Permissions on Host records are no longer required
Custom Images in the Administration area is now called Images and Account Types
The Expire Password Now menu for password records now triggers a Password reset if applicable
Installer for Internet Explorer Browser Extension will now delete registry key (on uninstall) which is created on initial use of the Extension
AD Synchronization Report has now been deprecated
Scheduled Password Validation Report has now been deprecated
Password Reset Tasks Report has been deprecated

Fixed a general error screen when authenticating with Manual AD Authentication from non-trusted IP addresses
Fixed an issue where encrypted Generic Field values may not have been able to be decrypted in the Passwordstate Windows Service
Users with Non-Admin rights to Folders and Password Lists were not able to drag them around in the Navigation Tree when they were meant to have access to do this
A general error screen was displayed when a user's account was disabled, instead of redirecting them to an appropriate screen
After clicking the Expand/Collapse all Password Lists/Folders icon in the Navigation Tree, it was not possible to expand/collapse individual tree nodes
When clicking on the 'Yes' button to check out a record for exclusive access from Passwords Home or a Folder, a JavaScript errors was preventing opening the Edit Password screen
When in Maintenance Mode, and error may have been displayed once clicking on a password record as it's possible the user's session may have ended if there was no activity on the screen
An error may have occurred during a Password Reset after a Time-Based Access was removed if the account was an Active Directory account and specified in FQDN format
Resource Discovery job was adding duplicate records when different naming conventions of UPN and Pre-Windows 200 format for accounts where being used

Passwordstate 7.6 - Build 7676 (18th June 2016)

Firefox Extension now out of Beta and made various site detection improvements to both Firefox and Chrome extensions
Added 'Ignore Site' button to all three browser extensions to easily ignore URLs you do not want to save logins for
Added a new Beta of the Internet Explorer extension which resolved several bugs
Added a method to the API to be able to search for Folders based on certain criteria

Passwordstate 7.6 - Build 7672 (29th May 2016)

Search Improvements: It's now possible to search for passwords using multiple search phrases, and Account Type is now also included in the search criteria

Fixed an issue where the Active Directory sync process could have returned the error "a more secure authentication method is required for this server"
The Logon button was wrapped to the next line when using Firefox on the password reset page for form-based authentication
When linking or unlinking Password Lists from templates, using the filtering search boxes may have caused issues with unlinking or the link/unlink buttons

Passwordstate 7.6 - Build 7668 (20th May 2016)

Ability to Check Out Password Records for exclusive access

Added Ability to set propagating permissions at nested folder levels, instead of just the top-level folder
Added the option to disable propagation of permissions from a folder
Made some changes to improve memory utilisation with the Passwordstate Windows Service, and also within IIS
Added support for Windows 10 and Server 2016 for Local Admin Account discovery, and Windows Account password validation
Added support for AzureDB and Amazon SQL Database Services
Made various improvements to the initial setup process, for adding logging and disabling buttons as you progress through the install
Updated the Folder icons to better indicate which permissions model is being used for the folder
Added the option to set the Host Heartbeat schedule on the Add and Edit Host screens
Added column TreePath to Expiring Passwords Report
The View Password screen for users with View access to a password record has now been replaced with the Edit Password screen for consistency
Added an option to force users to use a specific Policy for the Password Generator in the top toolbar and under the Tools menu
Added a copy to clipboard permalink icon to the Edit Password screen

If the Password List was configured to prevent exporting of Passwords, using the Save and Add Another button when adding record was ticking this option on newly created records
Fixed an issue where an Image may not have shown on the Remote Session Launcher credentials screen if not image was assigned to the relevant Password List
It was possible to set permissions on individual records when the Password List was inheriting permissions from an upper-level folder
Fixed an issue where an AD Security Group could not be added to Passwordstate if the ObjectSID for the group was longer than 50 characters
Scheduled Reports were not being sent to CC'd addresses if the CSV file type attachment
Error Console screen may have been showing in incorrect date format for specific regions
An exception may have been raised when viewing the History of a password record, if that record was restored from the recycle bin
Charts were not showing when using the High Availability instance of Passwordstate
Certain events which trigger sending of emails was receiving a "The multi-part identifier could not be bound" due to SQL Server being configured for Case Sensitivity

Passwordstate 7.6 - Build 7646 (19th April 2016)

Added a new System Settings so customers can choose if the Browser Extension should return only records intended for the Browser Extension, or all records where the URL field has a match
Added web and database server names to the Administration screen's About section

Charts in Passwordstate may not be displayed for certain accounts if users were being prevented from using the Browser Extension
If the user had View access to a password record, and the value of the password was being masked, and audit record was still being added to indicate viewing of the password was possible
It was possible to delete a password record when the System Setting for modify rights was denying this

Passwordstate 7.6 - Build 7641 (4th April 2016)

Moved some settings on the System Settings screen to more appropriate tabs
RADIUS Authentication official release - no longer in Beta
SAML2 Authentication official release - no longer in Beta
Added two new System Settings so you can specify which users are allowed to create Folders and Password Lists in the root of Passwords Home
Excluded the TreePath and ResetTaskCount fields from the 'All Passwords Report' to make the process of importing data into other Password List simpler
Security Administrators can now type the user's One-Time Password secret key within the User Account screen
Updated the validation for One-Time Password secret keys to instead check if the key was specified in Hexadecimal notation, instead of a Base32 string
When a user is asked to first populate their Google Authenticator or One-Time Password settings on first login, they must authenticate on this screen before their settings are saved
It is now possible to add a new or existing user's account to multiple Local Security Groups at once
Option to hide Toggle Visibility of Web API IDs for users who have Modify rights to Password Lists
Added a link to the Maintenance Mode label at the top of the screen, allowing you to easily navigate to the Administration area - and disable Maintenance Mode if needed
Added an option to the API to add Password Lists for individual User Accounts or Security groups - both Shared or Private Password Lists
Added a dropdown list on the Add/Edit Passwords screen so users can choose different Password Generator Policies to generate random passwords with
Added an option where a new Shared Password List can also be created when new user accounts are added into Passwordstate

A runtime error was being used with SAML2 Authentication when you navigate to the site from the SAML2 Providers web site directly
When basing a new Password List on the settings from another Password List or Template, the fields HeartbeatSchedule and FailedRetrySchedule did not have their values copied across
When using the Manual AD and One-Time Password authentication option, it was not redirecting to a page for the user to create their OTP secret if none existed
When returning Password List details from the API, it was not returning the new One-Time Password and RADIUS authentication types as a field setting

Passwordstate 7.6 - Build 7623 (18th March 2016)

Made changes to various initial setup screens to mitigate against session variables being prematurely ended on the web server
Reversed the change where right click was disabled for most pages, as this was preventing users copying certain data to the clipboard

Fixed an issue where it was possible to apply permissions to individual records within a Private Password List
Fixed an issue for builds 7580 to 7619 where the Passwordstate web site was not responding after a sever reboot

Passwordstate 7.6 - Build 7619 (11th March 2016)

Added the Host Port Number and Tag fields to the Password Reset Tasks screen
Added the option to prevent adding of auditing records for the API when retrieving all passwords in a Password List, as well as when searching for passwords

Fixed an issue with SAML2 authentication for okta.com not automatically redirecting back to the Passwordstate web site
Was receiving a Operator not defined for type DBNull error when trying to view a Google Authenticator barcode on the screen

Passwordstate 7.6 - Build 7615 (10th March 2016)

Beta: Added SAML 2.0 Authentication Support
Beta: Added RADIUS Authentication Support

The Browser Extensions will now ignore any password records where the browser extension fields are correctly populated with data

When dragging and dropping Password Lists in the navigation tree, the expand/collapse status may have changed depending on if you used one of the features to expand or collapse all nodes
When using the Mobile Client, Active Directory Account authentication was not working when using a non-trusted SSL certificate

Passwordstate 7.6 - Build 7610 (5th March 2016)

Added a new icon in the Navigation Tree to expand or collapse all Password Lists and Folders
If the option to hide the value of passwords is set for a Password List, then value of the password is masked in source code
Disabled right mouse click for most pages throughout Passwordstate
Added a check to the upgrade process to ensure the web.config file has the correct NTFS permissions - otherwise upgrading to build 7580 or above will fail
Added in a check for the upgrade pages to ensure SQL Server 2005 is not being used

Fixed an error page when clicking on a Folder you do not have access to when using the 'Toggle All Password List Visibility' feature
The page informing of the AppSettings section in web.config file being encrypted was not displaying

Passwordstate 7.6 - Build 7603 (29th February 2016)

During the second stage of upgrades, where the database is upgraded, only the person who has enabled Maintenance Mode can access the upgrade page
Updated the Linux account Validation Script to support interactive keyboard login requirements
Scheduled Account Heartbeats will no longer execute for password records which are set to unmanaged
Renamed the 'View Permissions' actions menu item for User Account Policies to 'Apply Policy to Users'
Added a new auditing for users viewing the value of a Privileged Account Credential
When 'Delete Password' is unchecked for the Modify permissions options on a Password List, the 'Copy or Move to different Password List' option will no longer be disabled
Added additional debug information for errors logged to the Error Console, to try and report on users sessions being prematurely ended in IIS
Made a change to the Passwordstate Windows Service to overcome issues for some customers where Scheduled Backups were not working, but manual ones were
Added a Close button to the Generic Error Page so popup windows can be closed in the event of an error

Fixed an issue where the highlighted Administration Tree Nodes where not correctly highlighted for the selected Security Administrator role - when adding/editing Security Admins
Fixed an issue where under certain circumstances, users could still log into Passwordstate when Maintenance Mode was enabled

Passwordstate 7.5 - Build 7592 (22nd February 2016)

Added the enabled status for a users Active Directory account to the output when using the 'Debug AD Security Groups' feature
Made some changes to AD synchronization process for the enabled status for user accounts, to overcome intermittent crashes in the Passwordstate Windows Service
Added support for uploading documents via the API
When adding a new Host record, and the Host already exists, the Add Host screen now closes if you grant yourself access to the Host
Added a new Actions menu item to grant yourself access to a Host if you don't already have access

Fixed an issue where the Passwordstate Windows Service was not working if the AppSettings section of the web.config file was encrypted
When using AD Authentication and Anonymous authentication was enabled for the site in IIS, it was not possible to login in when maintenance mode was enabled
Fixed an issue where a Host Discovery would return no results if a new Operating System record was added and the AD Attribute field was left blank
Fixed a database integrity error when logging in using Forms or Local Login authentication, and the user left a trailing space after their UserID

Passwordstate 7.5 - Build 7583 (13th February 2016)

Updated the Validation Script for local Windows Accounts for some systems where the Username needed to be specified in the format of HostName\UserName

Fixed an issue where the re-encryption process when upgrading to build 7580 may have failed on the SystemSettings table
Fixed an issue where a similar Host Name match was found when adding Host records, preventing saving of the record

Passwordstate 7.5 - Build 7580 (12th February 2016)

Added a new One-Time Password authentication method for the Web UI and Mobile client based on the TOTP and HOTP algorithms
A new Secret Key Rotation features has now been added to allow regular encryption key rotation

Encryption Keys can now be exported to a password protected zip file for disaster recovery purposes
Encryption Keys now use Secret Splitting to mask their identity
Every install of Passwordstate now uses two unique keys to perform the encryption, instead of the previous one
HMAC-SHA512 Hashing algorithm is now used to validate tampering of data directly in the database is not occurring
Random Initialisation Vectors are now used for every encrypted field and record
Added brute force login detection to all authentication methods in Passwordstate
A new System Setting option has now been included to prevent specifying API Keys in the QueryString of the API method call
Added FIPS Compliance support for Passwordstate
Have added a new System Setting option to allow nesting of Password Lists beneath other Password Lists if needed
Added better error reporting if a Password List associated with a Discovery Job had been deleted - previously reported conversion of string to boolean error
Added a user based option where they can choose to hide all Password Lists/Folders in the navigation tree when they first log into Passwordstate
When toggling the visibility of of Web APIs for a Password List, we now hide certain controls above the grid so the keys are more visible
You can now add in multiple Host records with the same name, if they have a different Remote Connection port number, and we've added the Port Number to the Hosts grid
Export all Passwords In Folder from within the Administration area is now exported to a password protected zip file
Added a license check to ensure the license count matches for Client Access Licenses and the Annual Support keys

When changing the value of a password field which was linked to various Hosts, it was performing a password reset even though the option Manage Account was not checked
Password Reset Results emails were being sent when the Email Template was disabled
When using forms based authentication, the new Maintenance Mode feature would not allow any user accounts to login in when maintenance mode was enabled
Fixed an issue where a user's Guest permissions could have been removed from a Password List when they were adding new password records and security groups where being used as the permission type
The Save And Close button was enabled on the Edit Folder screen for users who did not have administrator rights to the Folder
Filtering on a Password List when using the Password List Bulk Permissions feature was not allowing you to move the Password List into one of the Permission textboxes
When creating Password List under the Administration Area, it was possible it could have shown an error about not being able to create a Private Password List underneath a folder which was configured to propagating permissions
Fixed issue where the page would not redirect if cloning a folder from within the Administration area
When viewing permissions on a Folder from within the Administration area, it was possible to change permissions even though the Folder was not configured to have its permissions managed manually
The option to Auto Generate a new password value when adding new records was not working
When using the Save & Add Another button for a new folder, no permissions where applied when the top level folder was set to propagate permissions downwards
When selecting the 'Toggle All Password List Visibility' menu, filtering on Password Lists in the Navigation Tree was not working

Passwordstate 7.5 - Build 7551 (26th January 2016)

Added support to the Linux Password Reset Script for Mac OS X
Added an option where a Private Password List can be created for all new User Accounts which are added to Passwordstate
Added the option to import Bad Passwords from a csv file

When granting permissions to an individual Password record due to a user requesting access, if the approving Security Administrator did not have Admin rights to the Password List, it did not grant Guest permissions for the user requesting access
Fixed an issue with the Resource Discovery Job where it could have reported an error about a DBNULL operator comparison error
If the Heartbeat column in the Passwords grid was not visible, reordering the position of more than one column at a time was not possible due to a javascript error
When initially setting up Passwordstate and connecting to an existing empty database to create all the tables, a Server 500 error was experienced if the SQL Account being used had an ampersand symbol in the password
The popup guide for a Password List was showing HTML formatting tags instead of the actual formatting
Could not edit a Password record if the AccountType field was selected for the Password List, and the record was saved via the Browser Extension
All Passwords History Report and All Passwords Report could not be opened with certain zip programs
When using the 'Request Access to Passwords Lists' feature, clicking on a Password List you had no access to was non-responsive
Fixed an issue where Passwords Home or a Folder would not display when the Recent Passwords grid was being displayed

Passwordstate 7.5 - Build 7539 (2nd January 2016)

It is now possible to clone a folder structure when you have Modify access to the Folder

Fixed an issue with the API to resolve issues with the Browser Extension not auto-configuring - IE still requires a FQDN URL to use the Extension

Passwordstate 7.5 - Build 7537 (27th December 2015)

When clicking on any permalinks for records in Passwordstate, if the 404 error page does not redirect quick enough, instead we know display a message about waiting for the redirection

Fixed an issue in where the Browser Extension would not auto configure itself if the URL was not in a valid FQDN format. If a valid FQDN is required and not being used, then this is now reported in auditing data

Passwordstate 7.5 - Build 7535 (20th December 2015)

Fixed an issue where members of nested security groups may have been removed during the scheduled AD sync process
When there was more than one web site login credential, the Chrome Extension was only form filling the first entry
Right click menu options for adding Folders and Password Lists were not disabled if the user was not meant to have access to these features
Fixed an issue for an Open Connection error in the Windows Application Event log when a security group is being deleted as part of the scheduled AD sync process

Passwordstate 7.5 - Build 7531 (18th December 2015)

Updated Active Directory and Local Windows Account Validation scripts to overcome issues with environments which may have tighter security controls
Removed Windows Server 2003 from the Discovery and Password Reset screens due to this OS not being supported
Updated the Active Directory account password reset feature to support accounts in User Principal Name format
Added a count to the Document button for Password Lists
Added additional debug data for the Active Directory Security Group synchronization process
Made changes to the Folder Propagating Permissions feature to allow users to create Password Lists beneath them, regardless of the permission level at the top level folder

When dragging a Password List which was not inheriting permissions into a Folder structure which was propagating permissions, the flag on the Password List to indicate it was inheriting permissions was not being set
Made some changes to the scheduled Active Directory Security Group synchronization process to overcome an issue where users may have been removed from Security Groups within Passwordstate
The High Availability instance of Passwordstate was trying to write to the DebugInfo table when it shouldn't have been
When adding a password via the API, the request may have failed when adding Password History if no ExpiryDate was set
The Remote Session Launcher for RDP sessions was not working if the UserName or Password had a space in its value, or if using User Principal Name format
When adding a password via the API, then GeneratePassword setting was not generating a random password
Some variables in the Self Destruct Email template where not properly being replaced at the time the email was sent
It was possible that Passwordstate reported an Active Directory password reset roll back was successful, but didn't roll back the change in Active Directory
Bar chart statistics on Passwords Home and Folders was showing the same statistics for All Users and the currently logged in User
When moving a Password List into Passwords Home from a Folder which was propagating permissions downwards, the Password List was still configured to inherit permissions

Passwordstate 7.5 - Build 7515 (5th December 2015)

We have now added the Tree Path to the screen Pending Access Requests so it's easier to see what Password List the request is for
Remove various fields from the Enumerated Permissions Report, to limit the amount of data exported
Added a label to the Backup Settings screen to inform users they should restart the Passwordstate Windows Service if they change the schedule at all

The scheduled report Enumerated Password Permissions may have been reported on records in the Recycle Bin
The Report Type column on the Scheduled Reports screen may not have displayed the correct value
Fixed an issue where a PasswordListID value of 0 was being used in the TreeViewState table when it shouldn't have been
Fixed an issue where under certain circumstances permissions to a Folder may have automatically been removed
And the Add and Edit Passwords screens, the Privileged Account Credentials dropdown list for Password Resets was disabled for Active Directory accounts, preventing manual configuration of other reset tasks

Passwordstate 7.5 - Build 7507 (4th December 2015)

Made some changes to database querying in the API for the Passwords Home and Folder chart to improve performance
When a Security Admin impersonates another user's account, they cannot modify permissions to Password Lists or Folders even if that user had Admin rights
Scheduled Password Validation can now occur even if the password is not enable for resets
Discovery Jobs can now add new records to Passwordstate without enabling the Password Reset option
When a Password Validation occurs, if there is some form of error which prevents validating the Password, auditing data is now added and an orange Icon is shown in the Account Heartbeat column
You can now execute a Password Validation script for Active Directory Accounts on demand through the Passwordstate web interface
Added a new column to the Passwords grid to show a count of associated Password Reset Tasks for a record
Added a configurable OperationTimeout setting to Discovery PowerShell scripts
When an Active Directory account is configured for resets, the record is now added to the Reset Tasks count on the Edit Password screen
Added a Verbose Logging screen for Manual and Scheduled Backups
Updated the Active Directory account validation script to also support UPN account format
Various Host timeout settings are now configurable for PowerShell scripts on the screen Administration -> System Settings -> Hosts
On the main Administration screen, we've added the option to enable Maintenance Mode if you have the correct Security Administrators role

The use of Privileged Account Credentials was not showing accounts to users when permissions were applied to them via Security Groups
When a user had View access to a password record which had mulitple password fields configured, trying to click on the magnifying class multiple times to unmask data was causing a JavaScript error preventing visibility of data as expected
Fixed an issue where the new Maintenance Mode feature may have interfered with various schedules executed by the Passwordstate Windows Service
Under certain circumstances, adding a password record via the API could results in a 'no compatible route found' error message
The Reset Tasks count on the Edit Password screen was showing a count for Hosts which were set to unmanaged
Fixed and issue with using Bulk Permissions on Password Lists in the Administration area
Fixed a potential issue where Password Validation for certain records may not have been executed at the set schedule
Any of the Telerik Editor controls, like Password Notes field, was stripping line feeds during a paste operation
After pressing the Save button for Screen Options for the Password Lists page, it was prompting to export history data for records
You could no longer manager permissions on Folders within the Administration area, if your account did not already have Admin access to the folder
When impersonating a user's account, the option to delete a Password List was available

Passwordstate 7.4 - Build 7483 (18th November 2015)

The Password Reuse Report no longer shows the password values, and also does not return any records where the password value is blank
Any reports through the user interface which export password values into CSV files are now compressed in a password protected zip file
Password Strength Compliance Report now includes the UserName field

The new Maintenance Mode feature introduced in build 7476 was causes issues with Inactivity Timeout setting not logging users out
The Handshake Approval process for permissions was giving a Page Not Found error when declining access, or when the Handshake Timer expired
Made some changes to overcome an error when creating your first Password record - caused by duplicates existing in the PrivilegedAccountsACL table
When adding passwords via the API, if the AccountTypeID field for a Password List was set to mandatory, the API would error saying the AccountTypeID value was blank even though it was supplied

Passwordstate 7.4 - Build 7476 (10th November 2015)

Permissions from top level folders can now be propagated down to all Shared Password Lists and Folders

The Copy to Clipboard feature no longer requires Flash in the browser to function
You can now restrict API Access by IP Addresses on a per Password List setting
The Password Strength Compliance Report now includes a column called Bad Password, to indicate if there was a bad password match or not
Added an exclusion to the Resource Discovery script to ignore a scheduled task bug for Microsoft Sharepoint Workflow Manager
Added a regular clean up process for any old files left in the Upload folder
When adding a password record via the API and you have enabled it for Password Resets, then any Discovery Jobs can make use of this record instead of creating duplicates
Added a new Maintenance Mode which prevents users from logging on, and allows you to specify a time in which users sessions will be terminated
Made some changes to the IIS Application Pool reset script to ensure it could be successful started after stopping it
Added -IncludePortInSPN parameter support for Invoke-Command for various Windows reset scripts
A new Error Console screen has been added to the Administration area, and error debug data will no longer be visible to general user accounts
Pressing the Enter key of the Username field on any authentication screens now initiates the login process, just the same as the password field
You can no longer type the Upgrades URL directly into your browser
Made changes to account handling on Upgrade screens for improved security
Added checks to upgrade pages to ensure the user had the correct Security Administrator role in order to perform upgrades
Added additional checks to ensure no permissions to Private Password Lists can be changed in anyway
Added additional checks so permissions can only be added to Password List if you are Administrator of them, or a Security Administrator
In addition to a user session variable being destroyed on logout, their secure ASP.NET State Session cookie is now also destroyed
Changed any Disabled columns in grids to read Enabled, and showed an appropriate icon for each status type
You can now only nest Password Lists and Folders beneath other existing Folders - or Passwords Home
Removed the ability to create Folders from within the Administration area
The Navigation Tree will now be sorted by Folders first, then Password Lists - in alphabetical order

On the Hosts screen, using the paging buttons was clearing any filtering set on the page
Fixed an issue with AD Sync process where a circular loop of nested Security Groups could have caused the IIS process to spike CPU, or crash the Passwordstate Windows Service
After cloning a user's permissions and moving any Private Password Lists, the destination user would have received a database integrity error issue when trying to access any Private Password Lists
When searching from Passwords Home, it was possible that not all Password Lists your account had access to was being searched
Requesting access to Password Lists was broken, preventing adding of permissions if the request was approved
Fixed some issues to further protect against Cross Site Scripting issue (XSS) attacks
Some scheduled Account Heartbeats may have started failing as we overlooked inserting the correct license key for the Chilkat SSH component
For the 'Test Script Manually' feature, any SSH script using the Chilkat SSH component was failing, as we overlooked inserting the correct license key for this component
It was possible to upload documents at the Password List level when you only had Guest Access to the Password List
The Remote Session Launcher utility would not launch SSH sessions if the password had a comma or semicolon in its value
Reinstalling the Remote Session Launcher utility would cause remote sessions to fail as the PowerShell script being used was appending configuration settings on every reinstall
Fixed an issue where users may have been removed from an Active Directory Security Group during the scheduled AD sync process if there was a computer object within the group
Bulk Permissions for Password Lists would not list the available Password Lists if the TreePath field was NULL for one or more records
It was not possible to add a new Password Reset or Validation Script manually, unless you copied contents from a pre-existing script
An error message about the Privileged Account Credential for a non-trusted domain when resetting AD passwords could have occurred, preventing a password reset
The error message returned from Password Reset scripts if you forget to associate a Privileged Account with the Password Record, was still indicating you needed to associate the Privileged Account with the script itself
If using one of the Manual AD authentications screens, it was not reporting to the user that their account was disabled in Passwordstate
If your user account was disabled in Passwordstate, and you change the UserName field to another account in the AD Login screen, it would not let you authenticate with the second account
Certain password fields on various screens would not allow the use of special characters such as < and >
It was possible the password Recycle Bin could show an exception when you browse to it

Passwordstate 7.4 - Build 7434 (9th October 2015)

When adding new Password Lists or Folders, by default they can only be added beneath existing folders now
Surname for User Accounts in Passwordstate are no longer mandatory

When searching for passwords in Passwords Home, some passwords may not have been found if Password Lists where nested beneath other Password Lists
When using the Copy or Move to Different Password List feature from Password Home or Folders, the popup screen would not close after performing the required action
Under certain conditions, an exception may have occurred when selecting one of the Actions dropdown menus, when using Internet Explorer or Firefox
If a user's Surname was NULL in the database, certain screens would not show the FirstName as well
Under certain circumstances, the once a day scheduled for synchronizing Active Directory Security groups was not working
Fixed an issue where importing user accounts from Active Directory may not have completed, if there were System Accounts being imported whose field lengths were too big for the Passwordstate database fields

Passwordstate 7.4 - Build 7426 (5th October 2015)

We broke the ability to use the Request Access to Passwords feature in build 7422
Google GR Code was not being centered in the page for IE 9
Made some changes to overcome a SQL Timeout issue in Build 7422 when clicking on Passwords Home or a Folder
When viewing members of a Local Security Group, sorting by the User Name field was causing an exception

Passwordstate 7.4 - Build 7422 (30th September 2015)

You can now specify the Ping Packet Size for the Host Heartbeat feature
Made performance improvements to the Security Group and User Account cloning process as it relates to permissions for Password Lists
Various Notes fields now strip any Microsoft Office formatting when pasting from Word or Excel
Reduced the number of calls to the database significantly when clicking on Passwords Home of a Password Folder, which helps improves performance of page loads
Removed the old 'View Password Reset Tasks' icon from passwords records on the Passwords Home page to make it consistent with the View Passwords page
When using the 'Link to Password' feature for a Privileged Account Credential, we now show Title and Description so records are easier to identify
The notification for Annual Maintenance expiring will now only be visible to Security Administrators
Made changes to protect against inline proxy scanning tools manually manipulating querystring parameters
Any attempts to manually manipulate QueryStrings will now be redirected to a 404 page not found page
Set autocomplete="off" for all password textboxes so Firefox and IE do not remember previously typed values
Increased the default timeout on pages when cloning permissions for User Accounts or Security Groups
The option to convert Private Password Lists to shared is now hidden by default and customers must contact Click Studios to enable the option
Added an option to not show a list of Email Addresses on the Permalink screens for non Security Administrators
Set the ASP.NET Session Cookie as secure by default
Public Key authentication can now be used with Privileged Account Credentials to perform Password Resets in Linux Hosts
The Discovery Job process now queries all existing Password Lists to see if accounts already exist in them, instead of just the Password List specified in the Discovery Job

When reading Self Destruct Messages, if the URL being accessed is not HTTPS, the user will be informed they need to use it
Using the 'Save and Add Another' button when creating a Folder was not clearing the screen to allow you to create another folder
When searching for User Accounts in the Administration area, to add to security groups or apply permissions somewhere, disabled User Accounts will not be returned as well
The page which informs the user they do not have an account in Passwordstate could have reported a blank UserID value
Restoring the default Reset Scripts for F5 BIG-IP and Dell iDrac was not working
Fixed an issue where an error may have occurred when deleting a Privileged Account Credential
It was possible to upload PSD files for branding on the System Settings screen, when only png, gif or jpg files should be used
Selecting Non Active Directory Accounts on the Privileged Account Credentials screen was not hiding the Check Password button
When moving a Password Record with individual user Permissions to a new List, Guest access was not being applied to the new list for those users
When deleting a password record on Passwords Home or a Folder, the Recent Passwords grid was not updating
The Recent Passwords grid was not showing records which had permissions applied via a security group
When setting an Account Type for a password record from 'Active Directory' account back to blank, it was possible all records in the Password List where not being displayed, or an exception was raised
When using the Bulk Permissions feature for Hosts, if you removed permissions to all Hosts for a user or security group, the Save button did not perform the action

Passwordstate 7.3 - Build 7393 (4th September 2015)

You must now have PowerShell 3 or above installed on your web server, otherwise your will experience a Server 500 error. Download from https://www.microsoft.com/en-au/download/details.aspx?id=40855
If you are using the Linux Password Reset script at all, you now need to have Microsoft's Visual C++ 2013 Runtime library installed on your Passwordstate web server - https://www.microsoft.com/en-au/download/details.aspx?id=40784
Host Types and Operating Systems have been set back to their default values. If you have added any of your own custom records here, you will need to do so again on the screen Administration -> Host Types & Operating Systems
Password Reset Scripts no longer need a Privileged Account Credential associated with them - this is applied at the password record level now if required
If you have modified any of the Password Reset or Validation Scripts provided by Click Studios, majority of these scripts have been set back to defaults in this build. It is now recommended that you create your own scripts for this purpose, and clone the contents from the default scripts we provide
If you have modified any of the Discovery Scripts provided by Click Studios, these scripts have been set back to defaults in this build. There are now options for the Discovery Jobs to include/exclude cetain accounts from the Local Administrators Discovery Job
If you have Host records currently added in Passwordstate, please review the new settings on the screen Administration -> System Settings -> Hosts tab
If performing Password Resets, please refer to the new KB Articles in the User Manual, found in the Help Menu

It is now possible for Failed Password Reset tasks to roll back the password value within Passwordstate
Added support for resetting passwords on F5 BIG-IP Load Balancers
Added support for resetting passwords on IBM's IMM out of band management cards
Added support for resetting passwords on Dell's iDRAC out of band management cards
Added an feature where various Password Reset and Validation tasks can be updated for multiple password records at once
Added a new Account Heartbeat feature where Password records can now be polled on a regular basis to ensure the passwords stored in Passwordstate match what is being used on the Host
Hosts can now be polled regularily to ensure they are on-line, with multiple options for setting the Host as Unmanaged, or to delete the Host record if not seen on the network for an extended period
Added the option to test Reset, Discovery and Validation Scripts within the Passwordstate interface, with your own test data
Added support for resetting passwords for Linux root accounts
Added a new report to query when a password value was last updated
When a password value is updated, we now track this date and provide a column in the Grids to view it
Added an option to retry failed Password Resets on a more frequent schedule
Added support for discovery other types of operating systems in Active Directory with the Hosts Discovery job

Password Reset Scripts no longer need a Privileged Account Credential associated with them - this is applied at the password record level now if required
The 'Bulk Update Passwords' feature is now only available to Administrators of Password Lists
When viewing access requests for password records, we now include the UserName field for the password record in the grid view as well
The dedicated Remote Session Launcher page no longer opens in a new tab in the browser, and you will return to this page if your session in Passwordstate ends
Made changes to Backup Settings screen to better explain backup and in-place upgrade account requirements
Added a 'Refresh Grid' button to the Auditing grid on each of the Password List pages
When users are adding Hosts into Passwordstate, they are now informed if the Host already exists - adding manually, importing and the API
Redesigned the 'View Password Reset Tasks' screen to see last Account Heartbeat status, and to initiate a Heartbeat Poll for Hosts and Accounts
Password Validation Scripts no longer need to have permissions applied to them in order to associate them with a password record
Made some changes to the main Vertical Menu System so the menu can be pinned when it is expanded
Added 2 new audit events for the regular account Heartbeat password validation process
You no longer need to specify a Description when adding Password Lists or Folders
When opening the Edit Password screen when navigating from the Administration area, you will now be redirected to the View Password screen
"Validate Passwords Are In Sync" actions menu item has been removed now regular schedules for Account Hearbeats can be configured
Added right mouse click Context Menu to Navigation Tree for creating folders and password lists
When adding passwords via the API, you can now also select the Validation Script to associate with the password if you choose to enable the password for performing resets
Added additional error checking to the Get-Resource.ps1 PowerShell script for better error capturing
When Adding/Editing password records, if Password Reset is enabled, the relevant Password Validation Script is now automatically selected when choosing the Account Type
Pattern matching for Password Generator Policy can now include Special Characters
Renamed some of the Custom Images, and added a few extra
When adding Custom Images, the Custom Image Name field will not be overwritten with the name of the file
When adding a Remote Session Credential query, you can now use wildcards for matching Host Names
Added a new System Setting option to turn off the popup 'Guided Tour' for new user accounts
A parent Password List/Folder will now automatically expand in the tree view when creating any nested Password Lists/Folders
Added an option to have all Folders collapsed by default when your first log into Passwordstate
Hosts can now be set to Unmanaged or Deleted if they are no longer found in any Active Directory OUs as part of a Discovery Job
When adding/editing a Remote Session Credential, you can now also search for password credentials by Title and Description fields
You can no longer delete any inbuilt Host Type or Operating System records
Discovery Job emails are now sent to users who have permissions to the Discovery Job, as opposed to any related Password Lists/Templates
Made some changes to better catch error exceptions - previously they could have been blank
Added additional Host Types, Operating Systems and redesigned the screen within the Administration area
The Windows Account validation script no longer needs to use a Privileged Account credential to validate the password is correct
You can no longer make changes to the contents of Inbuilt Reset & Validation Scripts
When adding/editing Reset and Validation Scripts, it now records who the author is and date updated
You no longer need to pick the Password Reset Scripts to associate with any Discovery Jobs
You no longer have to have permissions to Inbuilt Password Reset scripts in order to associate it with a Password and Host record
Added an option to force user to change password upon next log on when using Forms Based Authentication
With the Hosts Discovery Job, you can now apply permissions to newly discovered Hosts with either User Accounts or Security Groups, instead of copying permissions from a Password List or Template
Added an option to only look for certain named accounts when using the Local Administrator Discovery feature

A background process was removing permissions from Folders if the folder had no nested Password Lists or Folders beneath it
When using Form-Based Authentication and email/pin MFA, the user was being logged out immediately after authenticating
User Accounts screen in Internet Explorer was showing contents center aligned when using small resolution displays
Fixed some UI width issues for Internet Explorer when displaying HTML fieldsets on various screens
Adding user accounts manually, or importing via csv file, was not allowing the UserID field to be of maximum length of 100 characters
The 'Folder Options' button was showing for the Passwords Home screen, when it shouldn't have been
If a Password Folder had no permissions applied to it, Security Administrator's couldn't fix permissions manually as all controls were disabled
When searching for passwords in a Password List with multiple pages, you could not navigate to the next page
Fixed an issue with Google Authenticator not prompting for access code when logging in as a different user
Newly created Local Login Accounts where being logged out immediately after they logged in for the first time
The Maintenance Renewal reminder link at the top of the screen could not find the renewal invoice in some cases
SSL Redirection was only occurring during initial authentication to the Passwordstate web site
Notes field text limit warning not showing when adding an initial 8000+ characters of text to a password record
Made several changes to prevent Cross Site Scripting attacks (XSS) by users intentionally saving malformed data in the database
Password List and Password Titles were missing within the body of the Permalink emails
Fixed an issue where the Active Directory User Account synchronization process may not complete due to a 'String or binary data would be truncated' error
The Mobile Client was expiring users sessions before the Idle Timeout setting was reached
It was possible Windows Hosts weren't being discovered if the AD Attribute lastlogontimestamp had no value stored in it
The Browser Extension fields could have been marked as mandatory fields when performing a CSV file import
It was possible to receive a 'malformed querystring error' on certain screens if a relevant field had an & symbol in it
When using API to create a new Password List, it could have apply the incorrect settings from a Template if also apply permissions from a Template
Received an error about the querystring being malformed when adding a Password List and clicking on the 'Save and Add Another' button
The 'Edit Password List Settings' menu option is no longer available for Private Password Lists within the Administration -> Password Lists screen
When Impersonating a User in Passwordstate, we now set the default home page to 'Passwords Home', in case the user has a Private Password List set as their default
When editing details for a Scheduled Report, the description of the report was not displayed unless you re-selected the report

Passwordstate 7.3 - Build 7316 (12th July 2015)

Made a couple of changes for cleaning up Folder permissions when Password Lists are deleted, or moved around in the Navigation Tree
Folder Options button is now visible to all users, regardless of their permissions on the folder
When cloning permissions from one user to another, and moving Private Password Lists as well, audited data for this move is now visible on the Administration -> Auditing screen
Resource Discovery Script now handles discovery of IIS Application Pools better, with improved error reporting
If a Password record has associated Password Reset Tasks, you are now only allowed to move this type of record into different Password Lists, instead of Copying them
Discovery Scripts have now been updated to ignore Managed Service Accounts (MSA)

In build 7301 we introduced a bug were new Forms Based User Accounts could not initially authenticate, because they were being automatically logged out
Permalinks we're working when using AD Integrated Authentication, and Anonymous Authentication for the site was enabled in IIS
It was possible emails for Discovery Jobs, Password Resets and Password Validations where not being sent, due to the email category text having some words in uppercase
Manual AD and SecurID Authentication, and Email Temp Pin Code Authentication, was logging user accounts out immediately after they authenticated
When clicking on a Password permalink, it was not honouring any secondary authentication options applied to it's Password List
In Build 7301 we broke the ability to use the Bulk Copy/Move Password feature in the Administration area
When moving a password between Password Lists, this would change the value of a Permalink for the password
Certain Scheduled Reports where not being sent if the user did not have a Security Administrator role
It was possible to edit the details for a Discovery Job when you weren't granted access to do so

Passwordstate 7.3 - Build 7301 (3rd July 2015)

Added Windows 10 Host support for Discovery, Password Resets and Remote Session Launcher
Made several changes to support the use of Managed Service Accounts for connecting to the database, instead of SQL Server Logins
Searching of passwords can now be done with partial matches using multiple values as the search criteria
Made changes to further protect against SQL Injection attacks, or Cross-Site Scripting (XSS) attacks
Dropped the reference to InBuiltAccount for Privileged Account Credentials
Renamed the 'Password Reset Options' tab on the Add and Edit Passwords screen to 'Schedule'
When setting a user's account to expire, the date when the account is expiring is now added to the audit logs
Added 'View Password Reset Tasks' menu to Host records on the Passwords Home page
On the Add/Edit Password screen, various controls are now hidden if the Password field has not been selected to be used for the Password List

When deleting a Password List or Folder, it was possible you may have seen a screen saying you no longer had access to this Password List or Folder
Was getting a "WRM cannot process this request" for Windows Resource Discovery as some hosts required the use of the -IncludePortInSPN parameter for Invoke-Command
Some of the Search boxes continued to show the search animation if the same value was searched more than once
When you are redirected to a screen to create a Google Authenticator Secret Key on initial login, the barcode was not centered correctly on the screen when using a small resolution
Add Password page was not being rendered correctly when clicking on the 'Save and Add Another' button while on the 'Notes' tab
Trying to save any changes to the 'Scheduled Task' password reset script was causing a server 500 error, preventing saving of the record
Fixed an issue where an error of "String or binary data would be truncated" may have occurred when trying to add records to the QueuedEmail table
A password record which was enabled for Password Resets was still showing an icon indicating it was associated with a Host, if the Host was set to 'Ignored' in Passwordstate
Password Reset Scripts should have had the option '-- Not Required --' for the Privileged Account you can associate with the script. This was missing for new installs of version 7.
When reading a Self Destruct Message, a error about "remote certificate is invalid" was shown when using a Self-Signed Certificate
When emailing a user a copy of the Google Authenticator Barcode, an Encryption error was displayed on this screen if the user did not have have Passwordstate open in the browser when they clicked on the navigation link in the email
Resetting of Scheduled Task passwords was failing if the Task had a single quote in the name
When a Password List has the option "Hide Passwords from users", it was still possible to see the password value by using the 'View & Compare History of Changes" menu option
Updated the Linux Password Reset script so that it will reset passwords correctly on RedHat Operating Systems
The Host Discovery process was discovery Hosts multiple times if the Host record did not have a dnshostname attribute

Passwordstate 7.2 - Build 7277 (30th May 2015)

When navigating to a Password List from the Administration -> Password Lists page, it was saving the Password List as the one to return to when you logged in to Passwordstate
Fixed an issue introduced in Build 7273 where it was not possible to save a new password record if the Account Type field was left blank
Fixed an issue where it was possible for Security Admins to navigate to Private Password Lists from within the Administration area
Fixed a crash when filtering the Password List Navigation tree when searching with a single quote

Passwordstate 7.2 - Build 7273 (26th May 2015)

Added support for SafeNet Two-Factor Authentication for the Web UI and Mobile Client

Added an option where you can return to the last Password List you had shown on your screen, once you have been logged out of Passwordstate
Added the option to brand the Logo and Page Titles for the Mobile Client
Updated licensing features to support the new Global license option
Added reporting options to export a list of Password Reset Tasks for an entire Password List, or an individual password record
Added a new option to allow changing of a Password Lists image when copying settings from another Password List or Template
Added an option to prevent users from unticking the option 'Link this Password List to the selected Template' when set via a User Account Policy
The option to link a new Active Directory account to an existing one in another Password List now requires you to know the password for the account, and the linking happens when hitting the Save button
Made some changes to the Remote Session Launcher installer to try and overcome NTFS permission issues on files when installing as a non administrator
The list of Domains in the dropdown list on Authentication windows will now only return unique domain entries if duplicate domain information has been added to Passwordstate
When using the 'Export All Passwords' feature, any Password Lists configured to support the Browser Extension will now have the values of the Browser Extension fields exported as well
Added a new option to enforce a two-step authentication process when one of the two-factor options was selected and only Windows Authentication for the site in IIS is enabled
Browser Form Fields are now exported and can be re-imported for Password Lists configured to use the URL field

Fixed an issue where selecting an additional Authentication Option for a Password List and clicking the 'Save and Close' button, was causing the site to be displayed in an iframe
Editing a user's settings on the screen Administration -> User Accounts, was clearing the Email Address field for where to send a Temporary Pin Code for authentication
Excessive Activity email notification was reporting on records in Private Password Lists
Some Exporting of Password features were exporting the ScriptID field when they shouldn't have been
On the Passwords Home page, "user" auditing data in the graph could have been incorrect on the timeline if some months had zero data to report
When the System Setting for preventing exporting passwords from Shared Lists was set, it was still possible to select this option on the Edit Password List Settings screen - exporting was disabled though
Custom page background color was not being displayed when logged out due to idle timeout being reached

Passwordstate 7.2 - Build 7253 (12th May 2015)

Added an option to convert Private Password Lists into Shared ones
Added the ability to delete or enable/disable User Accounts in bulk
Added a new Password Reset script for resetting the Enable Secret on Cisco devices
Made some changes to the Resource Discovery PowerShell script to exclude resources where the UserName field could have been returned blank
Made some improvements to the Passwordstate Windows Service so that newly uploaded images to the database can still be written to disk when using an Active/Active High Availability configuration
The selected Security Administrator roles are now added to auditing data when adding Security Admins, or updating their roles

Fixed a 'Cannot have multiple items selected' error when browsing to an Active Directory login page, when the same domain had been added to Passwordstate more than once
Access the page Administration -> Emergency Access was sending an email alert indicating the Login Page was being accessed
Under certain conditions, it was possible to bypass a two-factor authentication option for a user if you did a Run-As in your browser, and then changing the account you are authenticating with
Was receiving a 'Cannot find a column with UniqueName Password' when Impersonating another users account, and the Recent Passwords panel on the Home Page was displayed

Passwordstate 7.2 - Build 7243 (6th May 2015)

With the changes in the performance of the AD Synchronization process, please ensure the LDAP Querystring for any domains on the screen Administration -> Active Directory Domains are pointing to the root of your domain so User Accounts and Security Groups can be found

Added support for resetting passwords on VMware ESXi accounts
Added support for resetting passwords on HP iLO accounts
Made significant speed improvements to the Active Directory Security Group synchronization process
Local Login Accounts, when using AD Authentication option, can now also use all the other authentication options built into Passwordstate
Added an option on the Manual AD Authentication screens to display a list of Domains which can be selected, instead of needing to type the domain prefix manually
Additional Authentication options are now available when you enable Anonymous authentication for the site in IIS - when using the AD Integrated version
Added a new AD Account and Security Group debug mode, and screen for viewing debug events
When using the AD Integrated version of Passwordstate, if a user tries to access the site and they don't have a registered account in Passwordstate, they will be redirected to the Manual AD login page so they can login with a different account
Made changes to the resource Discovery PowerShell script to support discovery of Scheduled Tasks nested in Folders
Updated the error capturing in the Scheduled Task password reset PowerShell script to better report on whether the new password or privileged account password was incorrect
Added an email alert when Security Administrators export all passwords from the Administration area
Made some changes to the Passwordstate Windows Service to overcome the intermittent issue of "Unknown error 0x80005008" and security groups being removed when the Active Directory Synchronization process runs
Made improvements to memory utilisation of the Passwordstate Windows Service when synchronizing many Active Directory User Accounts and Security Groups

Made some changes to the Resource Discovery PowerShell script as Hosts without the option to execute PowerShell scripts enabled may have returned blank data
The Discovery PowerShell script was returning blank data if no Windows Services using accounts as their identity on Hosts with PowerShell 2 installed
Local Login Account authentication audit events where being recorded as Active Directory authentication attempts
When using Forms Based and SecurID Two-Factor Authentication, the UserID value was not being added to the auditing data
Duo Push Authentication was not working when the use of local Proxy Servers was required
Was receiving a 'Object reference not set to an instance of an object' error when trying to apply permissions for which user's were allowed to create API Keys for Password Lists
Fixed a 'String or binary data would be truncated' error if saving a Password List when the guide has more than 8000 characters of text specified

Passwordstate 7.2 - Build 7223 (18th April 2015)

With the upgrading of ZeroClipboard for improved security, you may need to clear your browser cache for the 'Copy to Clipboard' feature to work - either clear it through the browser menus, or hold the Shift key while you refresh the screen in Passwordstate

Added the ability to add, delete and search for Hosts via the API
Added a separate 'Allowed IP Ranges' feature for the API, so this can be locked down to different sets of trusted networks if required
Added a separate 'Allowed IP Ranges' feature for the Emergency Access Login page, so this can be locked down to different sets of trusted networks if required
Added an 'Outage Notification' Email Template and button so you can inform users of planned outages for Passwordstate
Added an option to email Security Administrators when a Password List is deleted
Added a new System Setting option for displaying the Account Types label next to the image in each of the Password Grids
Added the ability to view SecurityGroupID values on the screen Administration -> Security Groups
Added a new Password Generator API Key (System Settings screen) which now must be used for generator random passwords via the API
The automatic configuration of the Chrome Browser Extension no longer has a dependency on the Base URL field being accurate on the screen Administration -> System Settings
The Passwordstate Windows Service no longer relies on a registry key to determine the path to the web.config file
Updated to the latest version of ZeroClipboard for improved security - version 2.2.0

The SuperPutty configuration file had an incorrect path as to where it should save it's settings
The Allowed IP Ranges feature may have prevented the use of the Chrome Browser Extension, depending on what network settings were specified
Fixed various Cross-site scripting (XSS) vulnerabilities as the result of an application penetration test
The 'Save and Add Another' button on the screen Administration -> Password Lists was not redirecting to the Add Password List page
Fixed an issue with the 'Aged Password Report' where it may not have been returning data for all password records
Using Security Groups to specify which users are allowed to use the Chrome Browser Extension was not working - only when specifying permissions based on User Accounts
Fixed a bug for the Host Discovery Job where the Tag field may have repeated the value of 'No longer found in' if the Host was moved to a different OU
When the Passwordstate Windows Service 're-enabled' a user's Active Directory account, it was not first checking if there were any available licenses to do so
The verification of the backup account used prior to upgrades occurring was failing if customers where using the Forms-Based authentication version of Passwordstate
Fixed an issue where the standard horizontal popup message at the bottom of the screen was not bottom justified when using the new Vertical menu system
If a Password List's options 'Hide Passwords from Users' and 'User Must Specify a Reason' were set, the Password column in the Home Page Search Passwords grid was showing two sets of data
The verification of the backup account used prior to upgrades occurring was failing if a local account was being used as opposed as a domain account

Passwordstate 7.2 - Build 7200 (28th March 2015)

Made significant performance improvements when automatic applying of permissions to upper-level folders needed to occur
Made some performance improvements when sending the Delta Permissions Report email
The Host Discovery process no longer checks for matches on HostType equals 'Windows'
The 'Link to Password' field for Remote Session Credentials is now hidden a user has not been given permissions to the credential
When using Forms Based Authentication, if the 'Denied Access Altogether' option is selected for untrusted networks, the user is now denied on initial login, not after they first authenticate
The Emergency Access login page will now return a 404 Error page if accessed outside of the 'Allowed IP Ranges' settings

Reverted to previous version of Telerik ASP.NET Controls as the latest version was preventing pasting data from the clipboard into the Notes field for password records
After upgrading to Build 7185, the High Availability instance was reporting an UPDATE error for the UserAccounts table when trying to update the LastLoginDate field
Fixed an issue where the Passwordstate Windows Service could have caused high SQL Server CPU usage when sending emails for Password Lists which were nested deep in a Folder structure
The Passwordstate Windows Service was logging audit records as 'Access Updated' when it should have been 'Access Removed'
When only having a single Zone on the Passwords Home Page, the grid was not filling the width of the screen
When using Duo Push Authentication, it was possible a blank alert may have shown on the screen after authenticating
Pending password resets were visible to users who weren't granted access to the relevant hosts
The 'Allowed IP Ranges' authentication option, when outside the trusted networks, was only working if Passthrough Authentication was selected on the System Settings -> Authentication Options tab
Was receiving a 500 Internal Server Error when viewing a Self Destruct Message, only if the email wasn't sent from Passwordstate i.e. the copy to clipboard icon was used instead

Passwordstate 7.1 - Build 7185 (19th March 2015)

To configure the Chrome Browser Extension now, all you need to do is browse to the Passwordstate web site and it will configure itself - no more specifying the URL, UserID and API Key
Added two auto logout timers for the Chrome Browser Extension - when the user closes their browser, or when the browser has been idle for (x) minutes
Made some changes to the Chrome Browser Extension to eliminate the need to upgrade Passwordstate every time the Extension is updated
Security Admins can now choose which Users are allowed to save new web site logins with the Browser Extension
Security Administrators or Users can now choose which URLs are ignored by the Browser Extension, preventing saving of new logins for the given URLs
Added an option where 'View' permissions to a Password List can create new password records
Added 'Last Login Date' field on the screen Administration -> User Accounts
Updated to the latest build of Telerik's ASP.NET Controls
When sending Auditing data to a syslog server, the client IP Address is appended to the end of the syslog description field
Added a popup alert if there are any Failed Password Reset Tasks on the screen Hosts -> Pending Password Resets which may require your attention
Added additional error checking to 'Validate Password for Windows Account' PowerShell script, to ensure a Privileged Account Credential has been associated with it
When applying permissions to a Privileged Account Credential, a check is first made to ensure you have specified the UserName and Password for the account
Added some checks on the System Settings page to check AuthAnvil and Duo Push settings are specified before selecting one of these authentication methods
Added a new System Setting option to prevent users from exporting passwords from Shared Password Lists
Made some changes to the Remote Session Launcher Utility so the 'Remember my credentials' option is not selected for RDP sessions
Added an option to pause for (x) seconds between synchronizing Active Directory Security Groups
Made some changes to the Self Destruct Message feature, where the message can be viewed (x) number of times, and an email is sent to the user who generated the message on it being viewed
Added a new audit events for requesting,denying and approving access to Passwords and Password Lists
Added the option to add multiple Security Groups at once
When using the AD Authenticated version of Passwordstate, users outside of your internal network can now view Self Destruct Messages
Added a System Setting to have the default option of automatically linking or not new Password Lists to a Template if copying of settings from the Template is selected
Included UltraVNC VNCViewer 1.2.0.5 as the latest VNC client for the Remote Session Launcher utility
Added a check to ensure duplicate Bad Passwords can't be added on the screen Administration -> Bad Passwords
Added a filtering header to certain grids in the Administration area to allow easier searching
Increased the Field Length for filtering Hosts on the Remote Session Credentials screen
Browser Extension and Remote Session Launcher now has their own tabs on the Preferences screen
Masked and disabled some data on the Preferences screen when a Security Admin is impersonating a user's account
The Temporary Pin Code Email Address is now auto-populated when new accounts are added to Passwordstate
When a password record is of type 'Active Directory', then the UserName label will now show Domain\UserName
Increased the Field Length for filtering Hosts on two of the Discovery Jobs screens
Provided Templates for Permalink Text and Self Destruct Message Text
When using the Remote Session Launcher, if the password being used has the 'Provide a Reason' setting, then you must do this before logging in with these credentials
When saving new Passwords with the Chrome Browser Extension, the Password Lists are now sorted alphabetically by the TreePath
Added SuperPutty as the default SSH client for the Remote Session Launcher utility
Added an icon on the Edit Password screen to launch a new browser tab for the URL field
Password Reset script for Linux has been updated to include conditional processing for different Operating System types
Added OperatingSystem variable for Password Reset scripts so conditional processing in the script is possible for different Operating Systems
On the Backup and Upgrade Settings screen, add a button to validate the domain account being used has a valid password
Added a new System Setting option to hide the ability to manage permissions manually on folders
Added the ability to apply permissions to Remote Session Credentials, and share the credentials with other users
When performing an In-Place Upgrade, we now validate the account/password being used for the backups is still valid and not blank
When adding an Active Directory account password, if the account is found to already exist in Passwordstate, you are given the option of linking the two

For the 'Bulk Permissions for Individual Passwords' feature, an error message was displayed if you were not a Security Administrator of Passwordstate
Adding a Host Discovery Job record may have resulted in a JavaScript error after adding an OU, preventing certain clicking functions on the screen from working
Renamed the UserID for the Passwordstate Windows Service from WindowService to WindowsService
Added some checks to ensure either the Alphanumerics or Word Phrased options where selected for Password Generators, before you can generate passwords or save policy records
Administration -> Auditing screen may have returned zero results when filter on Audit Activities, as the Activity Type was automatically being deselected
Was receiving a "'Date2' cannot be converted to type 'Date'" error when impersonating a user when using Forms-Based Authentication
Self Destruct Message may not have added Auditing data to reflect which Password record was contained within the message
Fixed an issue where Password Lists were not showing on the screen Administration -> Password Lists, if the TreePath field value was NULL
Some session variables weren't being refreshed when using Form-Based Authentication, and saving some changes to your Preferences screen - required you to log back in to pickup changes
Made some changes to the Export All Passwords feature to overcome the report crashing if values like 5,4,3 were stored in a field - these we're trying to be interpreted as date fields
Any selected settings on the 'Password List Options' tab for a User Account Policy, were not highlighted Red showing the setting was in use
If connecting to en existing empty database during initial install, the database connection test would fail in the database name had a dash in it i.e. '-'
The 'Spell Password' icon was showing in to top toolbar when logged in as the Emergency Access account
Fixed an issue where it was possible to bypass the ScramblePad authentication login if your Pin Number was currently blank
Fixed some Passwords Home page UI issues when using a very small resolution
Fixed an issue with Google Authenticator where we query if the User Account exists now before we present the screen to create the Secret Key QR code
Fixed an issue where the correct authentication option for an account was not presented if the UserID was changed on the initial login screen
Error capture page for AD User or Security Group querying was not reporting the correct AD attributes
Fixed an issue where popup screens would not resize correctly when using small resolution monitors
Hosts & Password Resets screen in Administration area was showing black border around icons when using Internet Explorer 9

Passwordstate 7.1 - Build 7123 (30th January 2015)

Increased the default TimeOut value when trying to send emails

During a new install, the initial user account was not being created when using Forms Based Authentication, preventing logging into Passwordstate
Description for 'High Availability Site Accessed' was incorrect

Passwordstate 7.1 - Build 7120 (21st January 2015)

Added support for changing Com+ Component passwords

The Remote Session Launcher utility can now be used by multiple users on the same computer - requires reinstall of Utility
The 'Expiring Passwords Report' now has an option to only report on expiring passwords in the future, instead of both with the past
Added a System Setting option to show the Build Number at the top of the screen for All Users, or just Security Administrators
Limited the number of rows for the 'Recent Activity' grid on the Password List pages to improve performance
Added the ability to view/change User Email Notifications via the screen Administration -> User Accounts
Added a 'Maximum Records' textbox to Auditing screens to limit the number of records returned - to help improve performance
Added the Remote Session Launcher instructions to the main Help menu

The Email Notification Groups feature was unreliable and confusing depending on the settings
Reset Windows Service Password PowerShell script may not have reported the relevant Host name if the Windows Service could not be found
The 'Run Discovery Job Now' feature was setting the job schedule incorrectly if the current time was 59 minutes
Fixed a database timeout issue when navigating to the page Administration -> Auditing, if there were an excessive number of records to return
Fixed a database time-out error when trying to upgrade to version 7
The 'Toggle All Password List Visibility' menu option wasn't working if accessed when the Passwords menu was manually expanded on the screen
The Export All Passwords feature was giving a 'Object reference not set to an instance' error if not options where selected on the screen before running the report

Passwordstate 7.1 - Build 7105 (12th January 2015)

Added a Simulation Mode for each of the three Discovery features
Added a Scheduled Password Validation Report to check if the passwords stored in Passwordstate match what is currently in use on the various hosts

Added the option to disable a User's account when they no longer belong to any Active Directory security groups in Passwordstate
Added an email alert for Security Administrators if the automatic AD Sync Process was still running the next time the scheduled was met - could indicate an issue
Added an option to convert a Private Password List into a Shared one
Added some popup guidance windows to each of the 'Discovery' feature screens if the prerequisites haven't been met for adding discovery records
Added various System Setting options for showing, hiding or masking passwords on the Compare Password History screen, and for disabling the Actions menu item for this screen
Made some changes so the URL Mismatch popup window no longer appears
Added a new option where you can insert your own JavaScript code into the main default.aspx page - useful for your own usage tracking and reporting
Added the option to CC other users when emailing Scheduled Reports
Upgrades now check if SQL Transactional Replication is currently in place before an upgrade commences. If so, reminds the user that it must first be deleted if there are any schema changes
Added a new Password Validation script for Active Directory accounts, so it could be used in conjunction with the new scheduled report
Added the option to retrieve documents via the API
Added the ability to link a Password record with a Password Validation script
Using the 'Remote Session Launcher with these Credentials' Passwords menu item now allows you to search for hosts using the 'Tag' field
Added an option to Time-Based Access to password records to reset the password when the permissions were removed

The Spell Out Password feature may not have displayed the whole password on the screen correctly if the password value contained HTML tags
The use of Password Validation Scripts was too restrictive when used in conjuction with custom Password Reset Scripts
The 'Password Reset' option for passwords records was not being copied across to other Password Lists when using the Cop/Move feature

Passwordstate 7.0 - Build 7086 (21st December 2014)

Chrome Browser Extension has improved site awareness when clicking through multiple open tabs
Added the button 'Toggle ID Column Visibility' on the screen Administration -> Custom Images, as this is helpful for the API

The 'Authentication Credentials' email template was missing for new installs of version 7
Fixed an issue where some customers were seeing duplicate records on the SecurityGroupsMembership table
Fixed a 'primary key constraint' issue when the Passwordstate Windows Service tried to add a new user as the result of a security group synchronization
One-Time Access for an individual password was not executing any associated Password Reset tasks for non Active Directory accounts
When manually launching a Remote Session from a specific password record, the Tag name was being passed with the Host Name prevent the remote session from working
Creating a password via the API was not inheriting password reset features from the Password List the record was being added to
A 'Record Not Found' error was displayed when trying to add a Host Discovery job when no Active Directory Domains where added to Passwordstate

Passwordstate 7.0 - Build 7077 (12th December 2014)

Submitted the Chrome Browser Extension to the Google Play store
Added a 'Last Access vs Updated Report' for User Accounts to report on which passwords they have access to, and whether they have accessed them since the password was last updated
Added a new option which allows Security Administrators to grant themselves access to Password Lists via the Administration area
Provided the option where a User Preference or User Account Policy for copying settings/permissions from a Template to newly created Password Lists could be overridden
Added a new 'Inactivity Time Out' setting for clients whose IP Address was not in the Allowed IP Ranges
Selecting the reports 'All Passwords Report' or 'All Password History Report' will now add one 'Password Viewed' record for each password exported
Added additional error checking to PowerShell scripts to detect if a Privileged Account Credential has been associated with the script

Clicking on the Default Password Generator policy after a fresh install of version 7 was giving a 'DBNull to Boolean' error
'Logon' button for Manual AD and Duo Push Authentication option was wrapped to the next line in Internet Explorer
The List Administrator's Actions dropdown list may not have shown it's menu items if the list was positioned at the very bottom of the page
Under certain conditions, the authentication option chosen for client IP Addresses outside of the Allowed IP Ranges may have been ignored
Password Reset Script for Cisco & Linux accounts may have complained about 'Cannot access a disposed object' even after a successful reset
Using the 'Manual Credentials for Remote Session Launch' menu item was not working for domain accounts, only local accounts
The feature to restore default script settings for Oracle password validation and resets was not working
Any additional Authentication steps for a Password List where being ignored if the Password List was flagged as a favorite, and you navigated to it from the Passwords Home page

Passwordstate 7.0 Beta 6 - Build 7062 (27th November 2014)

Some customers may have experienced a data integrity issue when clicking on Password Lists, when permissions were applied via Security Groups

Passwordstate 7.0 Beta 5 - Build 7061 (25th November 2014)

Fixed an issue where the domain portion of a Users ID may have been detected incorrectly when synchronizing security groups - happened if the user accounts where in a different domain to that of the security group
Remote Session Launcher for RDP protocol was not allowing authentication using local accounts - only domain ones

Passwordstate 7.0 Beta 4 - Build 7059 (22nd November 2014)

You can now perform a Remote Session Launch from the Actions menu for a password record, and manually specify the Host and remote session type connection
Added a 'Tag' field to Hosts records, so you can categorise them, search them, or create Discovery Job records based on them
Discovery Jobs for Hosts can now populate the Tag field with the OU the Host belongs to
You can now compose a Self Destruct Message for individual password records
For Host Discovery Jobs, added the option to Lookup the FQDN for OUs and Containers
The Active Directory OUs for Host Discovery Jobs can now have the option to either recurse nested OUs, or not
Added 'View Password Reset History' for password records to view the history or any reset tasks, and the value of passwords for them
The Search Textbox in the toolbar at the top of the page will now search through all passwords you have access to, regardless of what Password List you may have selected
When copying/moving passwords between Password List, the filter for Password Lists now behaves the same in the main navigation tree
Added Auditing data for Self Destruct Messages being sent and read
Added a new option to either show all Hosts the user has access to on the Passwords Home and Remote Session Launcher pages, or to instead make them search for them
Added an option to hide the setting 'Show all Hosts added to Passwordstate' on the Hosts and Resources screen
'Actions' menu items for Password records have now been sorted alphabetically
Increased the size of the DatabasePortNumber and RemoteConnectionPortNumber for Hosts records
Added some additional error checking to Password Reset Scripts to detect if PowerShell 3 was not installed on the Passwordstate web server
For Forms Based Authentication, provided an option where users don't need to regularly change their login password
For Discovery Jobs, added more granular control for the schedule in which to execute the job

Fixed an issue where the domain portion of a Users ID may have been detected incorrectly when synchronizing security groups - happened if the user accounts where in a different domain to that of the security group
Fixed an issue where potentially a 'Could not load Telerik.Web.UI assembly' error could occur for certain Password Lists after upgrading to version 7
Recent Hosts grid could have shown Hosts which were set to be ignored
For 'Database' Server hosts, the Port Number may not have saved successfully
Made some internal changes for the Chrome Browser Authentication Key to see if it resolves an issue when using Russian language settings on the web server
Clicking on a Host could have resulted in a 'String to Boolean is invalid' error if the Host was added via a Discovery Job
The Mobile Client may have reported the Passwordstate web site was in need of an upgrade - issue introduced in Build 7019
Fixed error 'Method invocation failed because of method named Gettype' when discovering Local Administrator accounts
Cloning a Folder was causing a 'Operator = is not defined for type DBNull' when clicking on a Password List

Passwordstate 7.0 Beta 3 - Build 7033 (9th November 2014)

Multiple Active Directory OUs can now be associated with a Host Discovery Job
The Password Generator feature in the top toolbar can now be used to search passwords on the Home Page, Folders and Password Lists
Chrome Browser Extension now highlights the toolbar icon with a different color if multiple logins for a web site is detected - allowing you to chose which credentials to use
If no new records are found when a Discovery Jobs executes, this will be reflected in the email sent instead of an empty table
Added additional error checking for incorrectly specified Active Directory OUs in Discovery Jobs
Made the 'Login Attempt Succeeded" audit message for the Browser Extension a bit more obvious it was for authenticating to the API

Host Name was missing from auditing data when apply permissions to the Host
Could not apply/remove permissions to Privileged Account Credentials for 'All Users and Security Groups'
When clicking on the 'Test Permissions' button on the Backup Settings page, the progress indicator was not showing if the option to not perform backups before In-Place Upgrades was checked
When using Forms-Based Authentication option, the 'Security Administrator' role was not being applied to new Security Administrator accounts, even if it was selected
Fixed a couple of UI issues when using the In-Place Upgrade feature
The new PasswordstateApps application pool could have selected the .NET Framework 2, instead of 4
Fixed an issue where some customers were getting a blank page or server internal error when trying to use the Self-Destruct Message feature
Fixed a NullReferenceException error when clicking on the 'Screen Options' button for a Password List which did not have the Username field associated with it

Passwordstate 7.0 Beta 2 - Build 7019 (5th November 2014)

Added support for resetting Oracle account passwords

Duo Push authentication will now automatically log you in once you have accepted the Push Notification
Added the option to make the Duo Username read-only on the authentication screen
Chrome Browser Extension will now show you the Tree Path for a Password List when saving new records
Chrome browser extension will now save the Title of a page into the Description field
Mobile Client now reports generic login failure messages on the screen for improved security
Have now made it easier to configure the browsers to support the Custom Protocols needed for the Remote Session Launcher utility
The PSLauncher.exe file has now been digitally signed using a www.digicert.com Code Signing Certificate
All Passwordstate .exe installer files have now been digitally signed using a www.digicert.com Code Signing Certificate
Made the naming of buttons and menu items for linking of Passwords, Hosts and Reset Scripts to be more consistent and logical
Added some additional checks to ensure a PowerShell script was selected when linking Hosts -> Scripts -> Passwords
Added some buttons on the Reset and Validation Scripts screens to easily navigate to the 'Community Scripts' section of our forum
Added Help menu, build information, and a few UI improvements to the Chrome Browser Extension

Fixed an issue on 32bit servers for a System.Data.SQLite error
When selected users for the Handshake approval process for new permissions applied to Password Lists via the Administration page, it was possible your own account was being disabled as one of the approvers
Clicking on the 'Add Linked Resource' button for a Host record would produce an 'Object reference not set to an instance of an object' error
Fixed a bug where it was possible to experience a database timeout error when upgrading from Build 5458 or earlier
Remote Session Launcher feature may not have been working if execution of PowerShell scripts on the user's desktop was disabled
The Remote Session Launcher popup window in the browser may not have been successfully closed once remote session was initiated

Passwordstate 7.0 Beta 1 - Build 7000 (25th October 2014)

New Chrome Browser extension for form filling web sites
Added support for changing passwords on various remote Windows systems - Windows Services, IIS Application Pools, Scheduled Tasks and Local Account Passwords
Added support for changing passwords on Microsoft SQL and MySQL Servers
Added support for changing passwords on various remote Unix and Network hosts
You can now automatically discover Windows Hosts on your network, Local Administrator Accounts, and Windows Services, IIS Application Pools and Scheduled Tasks which are using accounts as their identity
Added the ability to validate Passwords are correct for Local Windows Accounts, MS SQL & MySQL Accounts, Linux and Network Hosts
Added support for creating your own PowerShell scripts to execute on a password change event
Added Duo Push Two-Factor Authentication support
Remote Session Launcher for automatically logging into hosts via RDP, SSH, Telnet or VNC
Added a new Vertical Navigation Menu, in addition to the Horizontal one. The navigation menu type can now be set system wide, users can choose their own, or it can be set via User Account Policy
Passwordstate can now be themed with different colors
New Dashboard Layout for Password Home and Folder pages - allows you to choose which panels to display, and where
New Favorite Password Lists feature, whereby favorites can be easily filtered in the Navigation Tree
New "Self Destruct Message" feature for sending time-bombed messages to other users

Generic Fields can now be configured as URL fields as well
Added the ability to encrypt any one of the Generic Fields you can select for Password Lists
Added the feature to spell out passwords in the format of tango echo yankee foxtrot, etc
Add Google Authenticator and Duo Push two-factor authentication support for the mobile client
Added option to Password Lists to ensure passwords are not visible or can be copied to clipboard
Added option to force users to use the Password Generator associated with a Password List
Updated User Account Policy settings to allow new Password Lists to be based on an existing Template - for both Shared and Private Password Lists
Users password, using Forms based authentication, will now expire after a set period, and password reuse is prohibited
Added various Folder and Password List methods to the API
It's now possible to send specific email notifications to a generic email address
When managing Password permissions from the Administration area, you can no longer apply/modify permissions for your own account, or for any Security Groups you're a member of
Users can no longer modify their own Security Administrator roles, or add roles for themself
Removed spaces around back slash from the TreePath value for all Password Lists
List Administrators Actions dropdown list now has menu items sorted alphabetically
System Settings tabs have now been ordered alphabetically
Added Department and Office fields for User Accounts, with Active Directory Synchronization updating these fields automatically
Each of the main Navigation Menus can now be hidden from users, instead of just disabled. We've also added controlling all menus items
Scheduled Reports now have an option to not send the report if there is no data to report against
The API now supports deleting password records
Permalinks for Password Folders has now been added
Added the option to exclude performing a backup prior to any In-Place Upgrades taking place
Added the option to export all Shared passwords into a KeePass compatible csv file
Email Temporary Pin Code authentication option has now been enabled when Anonymous Authentication in IIS has been enabled for the AD Integrated authentication version
Active Directory Authentication for the Mobile Client has now been moved to the API so a dedicated server hosting the Mobile Client web site does not need to be joined to the domain
Modify rights for a Password List can now access additional menu options in the List Administrator Actions dropdown list
Added an option to display a popup window for a Password List's Guide every time users access the Password List
Any System Settings for cloning settings and permissions from Templates to new Password Lists have now been moved to User Account Policies
One Time Access for permissions can now synchronize passwords for Active Directory Accounts, and initiate any associated Password Reset Tasks
Added a System Wide option to prevent the uploading of documents into Passwordstate
Passwordstate can now be used without an email server if needed, with certain features being disabled
Added the ability to generate random passwords based on a pattern of alphanumeric characters
'Password Synchronization' audit events have been renamed to 'Password Reset'
Filtering in the Navigation Tree can now also filter on Folders names
Added additional error capturing to the API for HttpStatusCode of InternalServerError (500)
Improved performance of page loads by removing the count total for various menu items under the Grid's Actions menu
Provided greater detail in the AD Synchronization Report
Screen Options for Password Lists and Folders has now been changed to a popup window
Password Generator Icon within the Search Textboxes on each page has now been moved to the top header panel on the main page
When deleting a Password List, the confirmation popup now tells you what Password List you have selected to delete
You can now exclude specific letters and numbers in the Password Generator results
When using IE, the clipboard clearing timer is reset if a password is again copied to the clipboard why the timer was active
Email alerts from the High Availability instance of Passwordstate are now queued, instead of being sent real-time
High Availability instance of Passwordstate now adds its own auditing data, which can also be reported against
Added the option for various API calls to exclude the Password field from being returned, resulting in to Auditing records being added
Added the ability to see all Private Password Lists on the screen Administration -> Password Lists. Only feature available with this is deleting the Password List
Moved all 'Administration' navigation menu items to their own Navigation Tree
Allow different Privileged Account Credentials for different AD Domains for synchronizing password changes
API and Mobile Client web sites now have their own IIS Application Pool
Added additional Pie Chart color options for Password pages
Auditing Graphs are now available to non Security Administrators as well
Synchronizing of AD user accounts and security groups will no longer execute if an existing process is running
Installer now provides the option to add a firewall exception for the selected web site port
New Security Administrator Report
API Key can now be included in the header request instead of the URL
Once the initial Enterprise license trial expires, you're now given an option to extend the trial instead of just disabling or deleting any excess user accounts
Added a check prior to starting any upgrades to ensure the required Session Variables hadn't expired due to the page being left open too long

Some Auditing Activities for various 'platforms' was not being shown correctly for Scheduled Reports
Mobile client was ignoring User Account Policy settings
Auth Anvil authentication was not working when Anonymous Authentication in IIS was selected - when using AD Integrated authentication
When the option to prevent exporting of all Passwords in a Password List was selected, the Bulk Update features was not disabled
User Account Policy conflict check wasn't checking for the last user in the query
API would not allow calls to Private Password Lists when using the API Key from the Private Password List
HTTPS redirection wasn't working for various authentication options until after the user was authenticated
Under certain circumstances, a Scheduled Report of type 'Custom Audit Report' may not save the correct Audit Activity
Under certain conditions, a Pending Access Request popup reminder window may have shown when you didn't have the required Security Administrator role
ScramblePad Authentication option was allowing users to log in when the initial Pin Number wasn't set
When a Generic Field of type Password was displayed in the grid and the field was blank, it was preventing copying the password field value to the clipboard
Under certain conditions the Password Generator may create duplicate passwords when generating large quantities of them
Enumerated Permissions Report was showing passwords in the recycle bin
When using Forms-Based Authentication, the ability to manage Security Administrator roles was disabled/hidden
Filtering in the Passwords Navigation Tree was not working if Password Lists were nested beneath other Password Lists
Searching from the Passwords Home page may have returned zero results if the previous search was was displaying a different Page Index in the grid
Could not manually add an AD Security Group with the same name on different domains
When upgrading from version 5, it was possible to receive an error about dropping a column in the TreeViewState table
When upgrading from Builds prior to 5458, it was possibly to receive an error about the Expanded field in the TreeViewState table not being allowed NULL values
The initial resetting of a password for a forms-based User Account was allowing the Confirm Password to be different
Could not close the 'View Password' window when viewing from the Auditing menu at the bottom of the screen
Edit Password screen was not sizing correctly if the descriptive text at the top of the screen was too long.
Notes field had no scrollbar for large content
Fixed a UI issue where an icon was shifting on the Add Password List Permissions page when you clicked on a User or Security Group

Passwordstate

Password Reset Portal

Remote Site Locations

Passwordstate 8.9 - Build 8951 (12th July 2020)

Passwordstate 8.9 - Build 8942 (23rd June 2020)

Passwordstate 8.9 - Build 8933 (9th June 2020)

Passwordstate 8.9 - Build 8925 (25th May 2020)

Passwordstate 8.9 - Build 8903 (6th April 2020)

Passwordstate 8.9 - Build 8900 (21st March 2020)

Passwordstate 8.8 - Build 8884 (28th February 2020)

Passwordstate 8.8 - Build 8876 (17th February 2020)

Passwordstate 8.8 - Build 8865 (28th January 2020)

Passwordstate 8.8 - Build 8864 (27th January 2020)

Passwordstate 8.8 - Build 8850 (23rd December 2019)

Passwordstate 8.8 - Build 8844 (16th December 2019)

Passwordstate 8.8 - Build 8838 (5th December 2019)

Passwordstate 8.8 - Build 8835 (29th November 2019)

Passwordstate 8.8 - Build 8812 (21st October 2019)

Passwordstate 8.8 - Build 8806 (9th October 2019)

Passwordstate 8.7 - Build 8792 (25th September 2019)

Passwordstate 8.7 - Build 8782 (11th September 2019)

Passwordstate 8.7 - Build 8765 (19th August 2019)

Passwordstate 8.7 - Build 8760 (12th August 2019)

Passwordstate 8.7 - Build 8744 (29th July 2019)

Passwordstate 8.7 - Build 8729 (10th July 2019)

Passwordstate 8.7 - Build 8706 (3rd June 2019)

Passwordstate 8.6 - Build 8691 (18th May 2019)

Passwordstate 8.6 - Build 8687 (14th May 2019)

Passwordstate 8.6 - Build 8679 (26th April 2019)

Passwordstate 8.6 - Build 8670 (16th April 2019)

Passwordstate 8.6 - Build 8652 (22nd March 2019)

Passwordstate 8.6 - Build 8650 (21st March 2019)

Passwordstate 8.6 - Build 8627 (26th February 2019)

Passwordstate 8.6 - Build 8600 (4th February 2019)

Passwordstate 8.5 - Build 8573 (9th January 2019)

Passwordstate 8.5 - Build 8556 (11th December 2018)

Passwordstate 8.5 - Build 8549 (30th November 2018)

Passwordstate 8.5 - Build 8537 (14th November 2018)

Passwordstate 8.5 - Build 8519 (24th October 2018)

Passwordstate 8.5 - Build 8501 (12th October 2018)

Passwordstate 8.4 - Build 8491 (5th October 2018)

Passwordstate 8.4 - Build 8488 (3rd October 2018)

Passwordstate 8.4 - Build 8459 (3rd September 2018)

Passwordstate 8.4 - Build 8455 (31st August 2018)

Passwordstate 8.4 - Build 8449 (24th August 2018)

Passwordstate 8.4 - Build 8411 (12th July 2018)

Passwordstate 8.3 - Build 8397 (21st June 2018)

Passwordstate 8.3 - Build 8388 (19th June 2018)

Passwordstate 8.3 - Build 8361 (23rd May 2018)

Passwordstate 8.3 - Build 8345 (29th April 2018)

Passwordstate 8.3 - Build 8334 (18th April 2018)

Passwordstate 8.3 - Build 8325 (6th April 2018)

Passwordstate 8.2 - Build 8284 (16th March 2018)

Passwordstate 8.2 - Build 8275 (14th March 2018)

Passwordstate 8.2 - Build 8256 (19th February 2018)

Passwordstate 8.2 - Build 8242 (5th February 2018)

Passwordstate 8.2 - Build 8225 (22nd January 2018)

Passwordstate 8.2 - Build 8215 (4th January 2018)

Passwordstate 8.2 - Build 8205 (15th December 2017)

Passwordstate 8.2 - Build 8204 (11th December 2017)

Passwordstate 8.1 - Build 8180 (21st November 2017)

Passwordstate 8.1 - Build 8165 (10th November 2017)

Passwordstate 8.1 - Build 8150 (1st November 2017)

Passwordstate 8.1 - Build 8146 (30th October 2017)

Passwordstate 8.1 - Build 8136 (19th October 2017)

Passwordstate 8.1 - Build 8114 (27th September 2017)

Passwordstate 8.0 - Build 8097 (15th September 2017)

Passwordstate 8.0 - Build 8091 (5th September 2017)

Passwordstate 8.0 - Build 8071 (22nd August 2017)

Passwordstate 8.0 - Build 8065 (15th August 2017)

Passwordstate 8.0 - Build 8058 (14th August 2017)

Passwordstate 8.0 - Build 8037 (10th July 2017) - Beta 2

Passwordstate 8.0 - Build 8000 (19th June 2017) - Beta 1

Passwordstate 7.8 - Build 7883 (29th May 2017)

Passwordstate 7.8 - Build 7868 (11th April 2017)

Passwordstate 7.8 - Build 7863 (17th March 2017)

Passwordstate 7.8 - Build 7854 (10th February 2017)

Passwordstate 7.8 - Build 7847 (27th January 2017)

Passwordstate 7.8 - Build 7844 (20th January 2017)

Passwordstate 7.8 - Build 7830 (2nd January 2017)