Changelog
  • 9 minutes to read
  • Dark
    Light
  • PDF

Changelog

  • Dark
    Light
  • PDF

Article Summary

Release date: Friday, August 11th, 2023

Check below the new features, improvements, and errors fixed in this version of senhasegura.


⚙ Changelog per module

PAM - Credential Management

Bug fixes

ItemDescription
349Fixed the "Internal Server Error" error when trying to edit a credential that didn't have the SSH key exchange successfully completed.
355Fixed the translation error of the term "User simulation" in Credentials per application in the English language.
339Tags "Devices", "Credentials", and "Access Group" are now case-sensitive, whereas before they were treated only as lowercase letters.
335Changed the SSH key exchange functionality so that only ssh-copy-id is performed on devices. The private key is generated by senhasegura and will be stored only there.
834Fixed issue with associating devices to SSH key, where password change was occurring on both active and inactive devices. Now, password change is only performed on the active devices.

Product Updates

No changes.

New Feature

ItemDescription
382Standardize the alert that appears when credentials initiate a remote session on a device without connectivity options added. Showing message "Device without connectivity" will be displayed.
383Columns "Credential" and "Hostname" fields have been added to the "My Approvals" report.
390Adjusted the fields with "Expiration of course" and "Expiration of query" of the password policy reports, displaying months and days instead of only months with broken numbers.
372The "Take over profile" function screen, now displays the list of users in alphabetical order.
371Updated the batch user import spreadsheet, fixing the layout and adding support for new fields, such as the inclusion of the User Group field.
369Added options to revoke approved "Exceptional Access".
369Added option to edit "Exceptional Access" before they're approved.
364New integration with SAP for credentials password change.
1200The expiration date of the credential is automatically set based on the date of the request.

PAM - Session Management

Bug fixes

ItemDescription
1090Fixed the Real fill and Simulated fill parameters at web session, when used to access the Kibana application via HTTP conection through senhasegura.
492Fixed the malfunction of the backspace key, when used at a web session via Telnet protocol on port 23.
352Fixed issue with displaying the amount of trust hours in a token when using SSH proxy for MFA.
5941Fixed error where the livestream of the remote session would return a "Not Found" error.

Product Updates

No changes.

New Feature

No changes.


PAM - Settings (Orbit/Orbini/Authentication)

Bug fixes

ItemDescription
340Fixed the bug that prevented the Radius validation flow for login + MFA from working together. It was made a transparent modification to the authentication flow, and now it's possible to use either login or login + MFA, ensuring an uninterrupted authentication process.
347Fixed backup alert when mounting remote backup partition via CIFS on Azure. The error "Operation not permitted (1)
346Fixed some inconsistencies in the consolidation of license consumption, which were reflected in the dashboard (Dashboard > System Consumption > General).
330Fixed error when creating SMTP settings if the server field is not filled out and the settings are saved, subsequent editing to include the server field will return a 500 error.
351Fixed error when changing the application language. The menu title is not updated and remains in the previous language even after refreshing the page.
746Fixed issue with incorrect file name when selecting "Export CSV" option from any menu of the application that has this option.
803Fixed error when registering a user with a username already synchronized by AD and belonging to a user group defined in synchronization.

Product Updates

ItemDescription
387Added a new field that allows selecting a specific network connector when using an LDAP server. With this improvement, senhasegura is now able to connect to an LDAP server on an isolated network, enabling authentication and centralized management of users.
120Removed the "OrbiniWatch Information" button from Server Information menu.
375Added the option of the "Authentication Device" field in the "Macro Hostname for Connection" macro in the batch import spreadsheet.
375Renamed the "Macro" field to "Remote App Macro" in the batch import spreadsheet.
375Added the fields "Macro Connectivity" and "Hostname or IP for Authentication Device".
752Changed the description of the Default role in English.

New Feature

ItemDescription
393Added progressive lockouts for enhanced server access security. Optimized Wazuh HIDS system to preserve resource integrity and minimize unsuccessful SSH connection attempts with lockout periods of 1 minute, 10 minutes, 1 hour, and 24 hours.
1034Added 'Company name' field in Orbit's initial configuration Wizard and Application Settings screen, allowing administrators to enter the company associated with the instance.
394Added an improvement to Wazuh Manager. Now, whenever an IP tries to access the system and is blocked due to a wrong password for three consecutive times, the event will be automatically recorded in the system's incident log and will be available for consultation.
384Implemented validation of approvers in the access group registration. The system verifies the presence of approvers when registering a group. Simple approval requires at least 1 approver, while layered approval requires 1 approver at each of the 2 minimum levels.
815Created new report called "Approvers by Group" in the report section.
419Added proxy support for seamless OAuth 2.0 support for email boxes in the IMAP, POP, and SMTP protocols.
360Added a replication mode with an external cluster, this feature is currently in an experimental state.

PAM - Task Manager

Bug fixes

No changes.

Product Updates

No changes.

New Feature

No changes.


PAM - Behavior

Bug fixes

No changes.

Product Updates

ItemDescription
586Fixed translation errors for the Behavior component. If using the Portuguese language, some English words were displayed instead of Portuguese words.

New Feature

No changes.


A2A

Bug fixes

No changes.

Product Updates

ItemDescription
412The system now only accepts OAuth 1.0 signatures sent through request headers with the "Authorization" header and disallows signatures sent through the request body.
412Accessing the API will require the use of OAuth 1.0 or OAuth 2.0. Basic authentication will no longer be available.

New Feature

No changes.


Discovery

Bug fixes

ItemDescription
667Fixed the bug that caused Internal Server Error while visualizing a credential that was imported by Discovery.
990Fixed a bug that caused SSH keys to not work properly during the Discovery process on RedHat devices.

Product Updates

No changes.

New Feature

ItemDescription
380Added notification when Discovery has verified the creation of a privileged credential.

GO Endpoint Manager Linux

Bug fixes

No changes.

Product Updates

No changes.

New Feature

No changes.


GO Endpoint Manager Windows

Bug fixes

No changes.

Product Updates

No changes.

New Feature

No changes.


DSM (DevOps Secret Manager) / Cloud IAM

Bug fixes

ItemDescrption
329Fixed the issue where users could not remove authorization secrets' when deleting all secrets associated with that authorization at the same time.
336Fixed bug that caused secret's tags containing numbers to be displayed in scientific notation.
332The bug causing Engine and Expiration Date fields not to be displayed on Secrets Dashboard was fixed.
1194Fixed a bug that occurred when registering applications in DSM (DevOps Secret Manager) by removing the automatic translation of the fields 'Line of business' and 'Application type.' This action prevents inappropriate duplication of these values when using different languages in senhasegura.

Product Updates

ItemDescription
412The system now only accepts OAuth 1.0 signatures sent through request headers with the "Authorization" header and disallows signatures sent through the request body.
412Accessing the API will require the use of OAuth 1.0 or OAuth 2.0. Basic authentication will no longer be available.

New Feature

No changes.


Executions

Bug fixes

No changes.

Product Updates

No changes.

New Feature

No changes.


MySafe

Bug fixes

ItemDescription
334Fixed bug that turned the special character "&" into the entity code "&amp." The error occurred in the "tags" and "notes" fields when the user added a new password.
791Fixed a writing error in the Portuguese version of the confirmation screen for disabled files.

Translation fixes

ItemDescription
790Fixed English words showed in the Portuguese version of the MySafe added-note confirmation screen.

Product Updates

ItemDescription
385The "Private groups" feature has replaced the "Access groups" feature on MySafe. This change aims to resolve an issue caused by the integration with AD. Previously, manually added users in MySafe groups were being removed during the process.
492Access limitations by time and access approval flow are currently unavailable in the Private groups.

New Feature

ItemDescription
359Added batch actions to MySafe. The component now supports batch-enabling, batch-disabling, and batch-sharing of passwords, notes, and files. This feature facilitates tasks on many information pieces, allowing users to deal with them simultaneously.
367Added a dashboard for administrators. The dashboard summarizes the usage of all MySafe features, not only the secrets the user has access to.

Domum

Bug fixes

ItemDescription
342Fixed false negative alert on successful batch imports.
342Fixed a bug that allowed the batch import for already registered third-party users. The feature now refuses duplicate entries.
343Fixed bug in the third-party registration screen. The email field was rejecting unusual domains when enlisting these users.
1062Fixed the bug that was causing devices associated with a domain to fail to display in Domum request access for third parties. The issue occurred when there were no related local credentials.
361Fixed a bug in the Domum interface for third parties, where the missing computer icon in the credentials registry for the "SSH Key" type was preventing users from initiating sessions of this kind.
361Fixed a bug in the Domum interface for third parties. The "View" option was not functioning properly in scenarios involving "SSH Key" credentials with passwords.
361Fixed a bug in the Domum interface for third parties, where the "View," "Copy," and "Spell" options were not appearing, allowing users to unduly view the private key line in both "SSH Key" credential scenarios, with and without a password.
361Fixed a bug in the Domum interface for third parties where the "Type" column incorrectly displayed "Local User" instead of "SSH Key" in the "SSH Key" credential records.
361Fixed a bug in the Domum interface for third parties. When the third-party user tried to request new access based on their previous accesses, the "SSH Key" credential did not appear.
361Fixed bug in the Domum interface for third parties. The issue was causing a duplicate register when requesting new access with an "SSH Key" credential that the user already had.

Product Updates

ItemDescription
318The term "employee" is being renamed to "internal user." The terminology transition will be completed in a future version.

New Feature

ItemDescription
381Incorporated icons to all the Domum Remote Access menus: Dashboards, Request access, Reports, Access control, and Settings. The icons help users quickly locate and access desired functionalities, enhancing their experience.
398Added a feature to the Domum access request screen. Now, in the Access limitation step, it is possible to customize the time window, specifying the end and start time of the access.

Dashboards

Bug fixes

ItemDescrição
610Fixed the bug that caused image components to not display in graphics and radars. This issue only occurred in the Russian and German languages. Dashboards now present all data, including the images.

Product Updates

No changes.

New Feature

No changes.


Certificate Manager

Bug fixes

ItemDescription
915Fixed the bug that displayed a message stating the absence of an approver to sign certificates for unrestricted access groups. After correction, access groups without the need for approval have their signature requests executed automatically.

Product Updates

No changes.

New Feature

No changes.


Network Conector

Bug fixes

No changes.

Product Updates

No changes.

New Feature

No changes.


Other versions

You can see the older documentation versions here.


Was this article helpful?