Changelog
- 9 minutes to read
- Print
- DarkLight
- PDF
Changelog
- 9 minutes to read
- Print
- DarkLight
- PDF
Article Summary
Share feedback
Thanks for sharing your feedback!
Release date: Friday, August 11th, 2023
Check below the new features, improvements, and errors fixed in this version of senhasegura.
⚙ Changelog per module
PAM - Credential Management
Bug fixes
| Item | Description |
|---|---|
| 349 | Fixed the "Internal Server Error" error when trying to edit a credential that didn't have the SSH key exchange successfully completed. |
| 355 | Fixed the translation error of the term "User simulation" in Credentials per application in the English language. |
| 339 | Tags "Devices", "Credentials", and "Access Group" are now case-sensitive, whereas before they were treated only as lowercase letters. |
| 335 | Changed the SSH key exchange functionality so that only ssh-copy-id is performed on devices. The private key is generated by senhasegura and will be stored only there. |
| 834 | Fixed issue with associating devices to SSH key, where password change was occurring on both active and inactive devices. Now, password change is only performed on the active devices. |
Product Updates
No changes.
New Feature
| Item | Description |
|---|---|
| 382 | Standardize the alert that appears when credentials initiate a remote session on a device without connectivity options added. Showing message "Device without connectivity" will be displayed. |
| 383 | Columns "Credential" and "Hostname" fields have been added to the "My Approvals" report. |
| 390 | Adjusted the fields with "Expiration of course" and "Expiration of query" of the password policy reports, displaying months and days instead of only months with broken numbers. |
| 372 | The "Take over profile" function screen, now displays the list of users in alphabetical order. |
| 371 | Updated the batch user import spreadsheet, fixing the layout and adding support for new fields, such as the inclusion of the User Group field. |
| 369 | Added options to revoke approved "Exceptional Access". |
| 369 | Added option to edit "Exceptional Access" before they're approved. |
| 364 | New integration with SAP for credentials password change. |
| 1200 | The expiration date of the credential is automatically set based on the date of the request. |
PAM - Session Management
Bug fixes
| Item | Description |
|---|---|
| 1090 | Fixed the Real fill and Simulated fill parameters at web session, when used to access the Kibana application via HTTP conection through senhasegura. |
| 492 | Fixed the malfunction of the backspace key, when used at a web session via Telnet protocol on port 23. |
| 352 | Fixed issue with displaying the amount of trust hours in a token when using SSH proxy for MFA. |
| 5941 | Fixed error where the livestream of the remote session would return a "Not Found" error. |
Product Updates
No changes.
New Feature
No changes.
PAM - Settings (Orbit/Orbini/Authentication)
Bug fixes
| Item | Description |
|---|---|
| 340 | Fixed the bug that prevented the Radius validation flow for login + MFA from working together. It was made a transparent modification to the authentication flow, and now it's possible to use either login or login + MFA, ensuring an uninterrupted authentication process. |
| 347 | Fixed backup alert when mounting remote backup partition via CIFS on Azure. The error "Operation not permitted (1) |
| 346 | Fixed some inconsistencies in the consolidation of license consumption, which were reflected in the dashboard (Dashboard > System Consumption > General). |
| 330 | Fixed error when creating SMTP settings if the server field is not filled out and the settings are saved, subsequent editing to include the server field will return a 500 error. |
| 351 | Fixed error when changing the application language. The menu title is not updated and remains in the previous language even after refreshing the page. |
| 746 | Fixed issue with incorrect file name when selecting "Export CSV" option from any menu of the application that has this option. |
| 803 | Fixed error when registering a user with a username already synchronized by AD and belonging to a user group defined in synchronization. |
Product Updates
| Item | Description |
|---|---|
| 387 | Added a new field that allows selecting a specific network connector when using an LDAP server. With this improvement, senhasegura is now able to connect to an LDAP server on an isolated network, enabling authentication and centralized management of users. |
| 120 | Removed the "OrbiniWatch Information" button from Server Information menu. |
| 375 | Added the option of the "Authentication Device" field in the "Macro Hostname for Connection" macro in the batch import spreadsheet. |
| 375 | Renamed the "Macro" field to "Remote App Macro" in the batch import spreadsheet. |
| 375 | Added the fields "Macro Connectivity" and "Hostname or IP for Authentication Device". |
| 752 | Changed the description of the Default role in English. |
New Feature
| Item | Description |
|---|---|
| 393 | Added progressive lockouts for enhanced server access security. Optimized Wazuh HIDS system to preserve resource integrity and minimize unsuccessful SSH connection attempts with lockout periods of 1 minute, 10 minutes, 1 hour, and 24 hours. |
| 1034 | Added 'Company name' field in Orbit's initial configuration Wizard and Application Settings screen, allowing administrators to enter the company associated with the instance. |
| 394 | Added an improvement to Wazuh Manager. Now, whenever an IP tries to access the system and is blocked due to a wrong password for three consecutive times, the event will be automatically recorded in the system's incident log and will be available for consultation. |
| 384 | Implemented validation of approvers in the access group registration. The system verifies the presence of approvers when registering a group. Simple approval requires at least 1 approver, while layered approval requires 1 approver at each of the 2 minimum levels. |
| 815 | Created new report called "Approvers by Group" in the report section. |
| 419 | Added proxy support for seamless OAuth 2.0 support for email boxes in the IMAP, POP, and SMTP protocols. |
| 360 | Added a replication mode with an external cluster, this feature is currently in an experimental state. |
PAM - Task Manager
Bug fixes
No changes.
Product Updates
No changes.
New Feature
No changes.
PAM - Behavior
Bug fixes
No changes.
Product Updates
| Item | Description |
|---|---|
| 586 | Fixed translation errors for the Behavior component. If using the Portuguese language, some English words were displayed instead of Portuguese words. |
New Feature
No changes.
A2A
Bug fixes
No changes.
Product Updates
| Item | Description |
|---|---|
| 412 | The system now only accepts OAuth 1.0 signatures sent through request headers with the "Authorization" header and disallows signatures sent through the request body. |
| 412 | Accessing the API will require the use of OAuth 1.0 or OAuth 2.0. Basic authentication will no longer be available. |
New Feature
No changes.
Discovery
Bug fixes
| Item | Description |
|---|---|
| 667 | Fixed the bug that caused Internal Server Error while visualizing a credential that was imported by Discovery. |
| 990 | Fixed a bug that caused SSH keys to not work properly during the Discovery process on RedHat devices. |
Product Updates
No changes.
New Feature
| Item | Description |
|---|---|
| 380 | Added notification when Discovery has verified the creation of a privileged credential. |
GO Endpoint Manager Linux
Bug fixes
No changes.
Product Updates
No changes.
New Feature
No changes.
GO Endpoint Manager Windows
Bug fixes
No changes.
Product Updates
No changes.
New Feature
No changes.
DSM (DevOps Secret Manager) / Cloud IAM
Bug fixes
| Item | Descrption |
|---|---|
| 329 | Fixed the issue where users could not remove authorization secrets' when deleting all secrets associated with that authorization at the same time. |
| 336 | Fixed bug that caused secret's tags containing numbers to be displayed in scientific notation. |
| 332 | The bug causing Engine and Expiration Date fields not to be displayed on Secrets Dashboard was fixed. |
| 1194 | Fixed a bug that occurred when registering applications in DSM (DevOps Secret Manager) by removing the automatic translation of the fields 'Line of business' and 'Application type.' This action prevents inappropriate duplication of these values when using different languages in senhasegura. |
Product Updates
| Item | Description |
|---|---|
| 412 | The system now only accepts OAuth 1.0 signatures sent through request headers with the "Authorization" header and disallows signatures sent through the request body. |
| 412 | Accessing the API will require the use of OAuth 1.0 or OAuth 2.0. Basic authentication will no longer be available. |
New Feature
No changes.
Executions
Bug fixes
No changes.
Product Updates
No changes.
New Feature
No changes.
MySafe
Bug fixes
| Item | Description |
|---|---|
| 334 | Fixed bug that turned the special character "&" into the entity code "&." The error occurred in the "tags" and "notes" fields when the user added a new password. |
| 791 | Fixed a writing error in the Portuguese version of the confirmation screen for disabled files. |
Translation fixes
| Item | Description |
|---|---|
| 790 | Fixed English words showed in the Portuguese version of the MySafe added-note confirmation screen. |
Product Updates
| Item | Description |
|---|---|
| 385 | The "Private groups" feature has replaced the "Access groups" feature on MySafe. This change aims to resolve an issue caused by the integration with AD. Previously, manually added users in MySafe groups were being removed during the process. |
| 492 | Access limitations by time and access approval flow are currently unavailable in the Private groups. |
New Feature
| Item | Description |
|---|---|
| 359 | Added batch actions to MySafe. The component now supports batch-enabling, batch-disabling, and batch-sharing of passwords, notes, and files. This feature facilitates tasks on many information pieces, allowing users to deal with them simultaneously. |
| 367 | Added a dashboard for administrators. The dashboard summarizes the usage of all MySafe features, not only the secrets the user has access to. |
Domum
Bug fixes
| Item | Description |
|---|---|
| 342 | Fixed false negative alert on successful batch imports. |
| 342 | Fixed a bug that allowed the batch import for already registered third-party users. The feature now refuses duplicate entries. |
| 343 | Fixed bug in the third-party registration screen. The email field was rejecting unusual domains when enlisting these users. |
| 1062 | Fixed the bug that was causing devices associated with a domain to fail to display in Domum request access for third parties. The issue occurred when there were no related local credentials. |
| 361 | Fixed a bug in the Domum interface for third parties, where the missing computer icon in the credentials registry for the "SSH Key" type was preventing users from initiating sessions of this kind. |
| 361 | Fixed a bug in the Domum interface for third parties. The "View" option was not functioning properly in scenarios involving "SSH Key" credentials with passwords. |
| 361 | Fixed a bug in the Domum interface for third parties, where the "View," "Copy," and "Spell" options were not appearing, allowing users to unduly view the private key line in both "SSH Key" credential scenarios, with and without a password. |
| 361 | Fixed a bug in the Domum interface for third parties where the "Type" column incorrectly displayed "Local User" instead of "SSH Key" in the "SSH Key" credential records. |
| 361 | Fixed a bug in the Domum interface for third parties. When the third-party user tried to request new access based on their previous accesses, the "SSH Key" credential did not appear. |
| 361 | Fixed bug in the Domum interface for third parties. The issue was causing a duplicate register when requesting new access with an "SSH Key" credential that the user already had. |
Product Updates
| Item | Description |
|---|---|
| 318 | The term "employee" is being renamed to "internal user." The terminology transition will be completed in a future version. |
New Feature
| Item | Description |
|---|---|
| 381 | Incorporated icons to all the Domum Remote Access menus: Dashboards, Request access, Reports, Access control, and Settings. The icons help users quickly locate and access desired functionalities, enhancing their experience. |
| 398 | Added a feature to the Domum access request screen. Now, in the Access limitation step, it is possible to customize the time window, specifying the end and start time of the access. |
Dashboards
Bug fixes
| Item | Descrição |
|---|---|
| 610 | Fixed the bug that caused image components to not display in graphics and radars. This issue only occurred in the Russian and German languages. Dashboards now present all data, including the images. |
Product Updates
No changes.
New Feature
No changes.
Certificate Manager
Bug fixes
| Item | Description |
|---|---|
| 915 | Fixed the bug that displayed a message stating the absence of an approver to sign certificates for unrestricted access groups. After correction, access groups without the need for approval have their signature requests executed automatically. |
Product Updates
No changes.
New Feature
No changes.
Network Conector
Bug fixes
No changes.
Product Updates
No changes.
New Feature
No changes.
Other versions
You can see the older documentation versions here.
Was this article helpful?
