Documentation Index

Fetch the complete documentation index at: https://docs.senhasegura.io/llms.txt

Use this file to discover all available pages before exploring further.

Changelog and Upgrade Notes are now Release Notes. We've unified both so you can find everything about each version in one place.

Segura® Platform v4.2.2

Prev Next

In this article


About this release

On April 1, 2026, we released version 4.2.2 of Segura® Platform. The release includes 23 changes across 9 modules.

  • Release date: 2026-04-01

For information on how to update Segura® Platform, see Update Segura®.


Release highlights

Post-Quantum Cryptography Support

Version 4.2.2 introduces support for Post-Quantum Cryptography (PQC) in the Network Connector, ensuring long-term protection of secure communications.

What's new

  • Support for post-quantum cryptographic algorithms.
  • A hybrid cryptography model combining:
    • Classical algorithms.
    • Post-quantum algorithms.
  • Secure communication channel between the platform and isolated environments.

Customer impact

This feature prepares organizations for future threats posed by quantum computing, ensuring that:

  • Sensitive data remains protected long-term.
  • Communication channels remain secure against emerging attack vectors.
  • Compliance requirements in regulated environments are met.

It reinforces Segura's leadership in forward-looking security innovation and cryptographic resilience.

See the documentation:


Unified Audit Report for Applications (DSM / Elasticsearch / A2A)

Segura® now introduces a new unified audit report designed to provide full visibility into credential usage across applications.

This feature consolidates previously fragmented data into a single, correlated view, enabling security teams to efficiently support audit and compliance processes.

What's new

  • New unified report correlating:
    • Applications.
    • Authorizations.
    • Secrets.
    • PAM and cloud credentials.

Customer impact

This capability significantly reduces the manual effort required during audits by providing a single source of truth for credential consumption. Organizations can now improve audit readiness, governance, and compliance while accelerating investigation and remediation of unauthorized or suspicious access.

See the documentation:


CLM – GoDaddy Certificate Reissue Support

Segura® now supports certificate reissue (reissue) for GoDaddy certificates directly within CLM, enabling more efficient certificate lifecycle management.

What's new

  • Reissue of existing certificates via GoDaddy API.
  • Support for manual and automated reissue workflows.

Customer impact

This feature eliminates manual reissue processes in external portals, improving automation, operational efficiency, and lifecycle control of SSL certificates.

See the documentation:


Changelog

Certificate Manager

Changed

Item Description
SSGR-9953 Added GoDaddy certificate renewal functionality, available 60 days before to 30 days after expiration. See the documentation:
- About renewal.
- How to sign a request.
SSGR-8339 Added the reissue feature for GoDaddy certificates. Now, instead of generating a new certificate every time one expires, you can reissue GoDaddy certificates directly through Certificate Manager. See the documentation:
- About reissuing.
- How to reissue GoDaddy certificates.

DevOps Secret Manager

Changed

Item Description
SSGR-3950 Added the Audit Export menu in the DSM, allowing the generation of consolidated reports correlating applications, authorizations, secrets, and credentials (PAM, Cloud, and ephemeral). See the documentation:
- About audit export in DSM.
- How to perform an audit export in DSM.
SSGR-9932 Added support for storing key/value secrets with up to 16384 characters in DevOps Secret Manager. This enhancement increases the previous limit of 4096 characters and now applies to input submitted through both the interface and the API.

Fixed

Item Description
SSGR-9967 Fixed an issue where selecting multiple secrets and triggering a bulk action (such as deactivate or activate) returned an HTTP 500 error and completed no operations. Bulk actions on secrets now complete successfully.
SSGR-9912 Fixed an issue in DevOps Secret Manager where secrets selection and listing while creating or editing applications did not respect the user’s access policy. The interface now lists, searches, and selects only secrets within the authorized scope, and the system blocks attempts to associate out-of-scope secrets with an authorization error.
SSGR-9968 Fixed an issue where special characters < and > in key/value secret fields were inconsistently encoded across the application. In the Key/Value edit tab, values were displayed as &lt; and &gt; respectively; in the Details view. API responses were also affected, returning HTML-encoded values instead of the original characters. Values are now stored and rendered consistently across all views and API responses.
SSGR-9965 Fixed an issue where the API returned an empty string ("") instead of the value "0" (zero) when a key/value secret field was set to exactly 0. The web UI correctly displayed and saved the value, only the API response was affected.

Discovery

Fixed

Item Description
SSGR-8746 Fixed an issue that prevented the automatic execution of device Discovery within the configured time interval.

EPM Linux

Fixed

Item Description
SSGR-10060 Fixed an issue where the EPM Linux agent installer failed on systems where the /tmp partition was mounted with the noexec option, preventing installation. The installer no longer depends on execution permissions in /tmp.

EPM Windows

Fixed

Item Description
SSGR-9693 Fixed an issue in the EPM installation that displayed incorrect or untranslated texts in the installer.

Framework

Fixed

Item Description
SSGR-9919 Fixed an issue in the Settings > System parameters > Global > LDAP / Active Directory screen where searching for a device in the Domain settings section did not filter the list of results correctly.
SSGR-8461 Fixed an issue in the general search bar on Segura® Platform, which was returning credentials and devices regardless of their status (enabled or disabled).
SSGR-9881 Fixed an issue in PAM Core that prevented the display of the region (geolocation) information in the user login history.

Network Connector

Added

Item Description
SSGR-8578 Introduced support for Post-Quantum Cryptography (PQC) to protect all data communications between the connector and the platform against future threats from quantum computing. See the documentation:
- About Post-Quantum Cryptography in Network Connector.
- How to enable Post-Quantum Cryptography in Network Connector.
- Network Connector status log.

PAM Core

Changed

Item Description
SSGR-7876 Added support for generating personal temporary tokens for authentication in proxy sessions. With this enhancement, users authenticated through providers such as AD, SAML, or OpenID can generate a temporary token and use it as a password to access Terminal Proxy, RDP Proxy, and Database Proxy without exposing local credentials in native clients. See the documentation:
- About proxy access with temporary tokens.
- How to generate a temporary token for proxy access.

Fixed

Item Description
SSGR-10046 Fixed an issue in PAM Core where the \ character was not recognized when saving automation fields for logins via Web Proxy, causing execution failures.
SSGR-7530 Added support in the RDP Proxy to automatically apply the user workstation scaling factor to the remote session.
SSGR-9888 Fixed an issue in Active Directory group synchronization where the Department field for users was set only during creation and was not updated in subsequent synchronizations.
SSGR-9905 Fixed inconsistencies in last activity dates on Security Panel dashboard.
SSGR-9971 Fixed an issue on the PAM Core > Home > Last used credentials panel where the device name associated with the credential was not displayed after changing its connection address.
SSGR-10026 Fixed an issue on the PAM Core > Credentials > All credentials screen, which caused infinite loading when trying to bulk edit multiple credentials.

Proxy

Fixed

Item Description
SSGR-8497 Fixed an issue where, in a SSH session through the Web Proxy, the input and output data wasn’t being registered in the Session text log report.