Upgrade Notes 4.2.5

Prev Next

Segura® Platform 4.2.5 introduces important advancements in secure database and Just-in-Time (JIT) access scalability, reinforcing Segura®’s position as a modern platform for Privileged Access Management (PAM).

This release improves operational scalability, strengthens security controls, and enhances user experience.

Release highlights

  • Operational scalability: Simultaneous JIT access for high-demand operational scenarios
  • Secure Connectivity: SSL/TLS certificate support for PostgreSQL DB Proxy connections

Together, these enhancements strengthen Segura®’s capabilities for large-scale enterprise operations while improving governance, flexibility, and user productivity.

Simultaneous JIT Access

Version 4.2.5 introduces support for simultaneous Just-in-Time (JIT) access executions.

Previously, only one active JIT session per credential was allowed at a time, creating operational limitations in environments requiring concurrent privileged access.

What’s new

  • Multiple users can now request JIT access simultaneously using the same base credential.
  • Independent ephemeral account creation per request.
  • Configurable limit for concurrent sessions.
  • Dedicated audit reporting for each JIT grant.

How it works

Image

To provide flexibility for different operational scenarios, a configurable system parameter now controls the maximum number of simultaneous JIT sessions per credential.

How session limits work

  • The platform administrator can define the maximum number of concurrent JIT sessions allowed for a credential.
  • The limit applies only to credentials configured in Creation/deletion mode.
  • Each active grant counts as an independent concurrent session.

Creation/deletion mode

  • Each requester receives a unique ephemeral account.
  • Sessions operate independently.
  • Each access maintains:
    • Individual expiration.
    • Approval flow.
    • Audit trail.

Customer impact

This enhancement eliminates the need to duplicate credentials for parallel operations and significantly improves operational scalability.

Organizations can now support scenarios such as:

  • Incident response.
  • Parallel support operations.
  • Critical maintenance windows.
  • Simultaneous administrative activities.

While maintaining full auditability and access isolation.

DB Proxy Expansion: SSL/TLS Support for Cloud PostgreSQL

Version 4.2.5 expands PostgreSQL DB Proxy capabilities, adding support for per-device SSL/TLS certificate configuration in Cloud database environments.

This enhancement enables compatibility with managed PostgreSQL environments hosted by providers such as:

  • AWS.
  • Microsoft Azure.
  • Oracle Cloud Infrastructure (OCI).

What’s new

  • New Certificate section in device connectivity settings.
  • Upload of certificate and private key per device.
  • Secure and encrypted storage for certificates and private keys.

Customer impact

This enhancement expands DB Proxy compatibility with Cloud-managed PostgreSQL services, allowing organizations to adopt modern architectures without sacrificing centralized privileged access control.

Benefits include

  • Support for SSL/TLS requirements enforced by Cloud providers
  • Greater compatibility with managed PostgreSQL environments
  • Better alignment with hybrid and multi-cloud architectures
Digital sovereignty is a fundamental right for citizens, institutions, and society. That’s why we work every day.
Connect With Us
SEGURA
LEARN
EXPLORE
Copyright © Segura. All Rights Reserved