Fixes

Server

• PAM - Fixed an issue that prevented manual check-in when a checkout had timed out.
• Web - Several UI fixes.

Console

• Fixed bug where Applying least permission wasn't working with gMSA.

Features

Console

• Improved default IIS Application Pool advanced settings when creating a new DVLS instance.

Fixes

Server

• Security Fix - Core - Fixed vulnerability issue with the PAM propagation script.
• Core - Fixed an issue where the Disconnection Data Source settings were not saved properly.
• Core - Importing Google password doesn't create a legacy website anymore.

Features

Server

• Core - User notifications can now be sent based on user type.

Fixes

Server

• Core - Fixed an issue where all sessions were returned as running session.
• Core - Fixed an issue where comments on session close were not saved.
• Core - Fixed an issue where user without all rights in Active Directory can not be used to configure a domain.

Console

• Minor updates.

Fixes

Server

• Core - Fixed an issue where error was thrown if an entry was linked on a deleted entry in user vault.
• Core - Fixed an issue where Okta user can't be created as read only.
• Core - Fixed an issue where properties "Override RDP Setting" in CyberArk Dashboard entry were not saved.
• Core - Fixed an issue where scheduled reports were not affected by daylight saving time change.
• Core - Fixed an issue where Windows Authentication failed if Force token public IP validation was set to true.
• Core - Fixed issue where opened sessions list was always empty.
• Gateway - TCP hostname is always marked as not configured in diagnostics.
• PAM - Fixed an issue where AnyIdentity action script fails when a non-mandatory property is configured as a parameter.
• PAM - Fixed an issue where PAM account can't be edited when the account is in a folder.

Console

• Minor updates.

Fixes

Server

• If you are using RDM as the client, RDM 2023.2 is required for this DVLS version.
• Fixed an issue when a User Vault entry is duplicated in the Favorites tab and could not be removed from the User Vault.
• Fixed an issue when an error occurred when accessing Devolutions Gateway Permission.
• Fixed an issue when Azure cache erased on Internet loss.
• Fixed an issue when trying to navigate to a favorite in the user vault.
• Fixed an issue with the shared vault dashboard that kept refreshing in a loop.
• Fixed error when filtering (user or user groups) accounts in Microsoft Users Import dialog.
• Fixed issue when recording could be saved 'remote'.
• Fixed Pam featured not enabled bug.

Console

• Minor updates.

Features

Server

• Core - Added PAM usage policies for Microsoft RDS Dashboard and Microsoft Active Directory Dashboard.

Fixes

Server

• Core - Fixed an issue where Devolutions Gateway name was not shown in opened connections report.
• Core - Fixed an issue where user could not be imported from Azure AD.
• Core - Fixed temporary access request report to be able to export it.
• Gateway - Fixed an issue where Devolutions Gateway configuration could not be published.

Console

• Minor updates.

Features

Server

• PAM - Added 'all sessions' type in PAM usage policies configuration.

Fixes

Server

• Core - Fixed an issue where all alarm codes were deleted even if only one had to be deleted.
• Core - Fixed an issue where CyberArk entry could not be saved with SAML authentication.
• Core - Fixed an issue where grant temporary access was failing.
• Core - Fixed an issue where no notification was sent on the Azure AD user created automatically.
• Core - Fixed an issue where roles can't be retrieved.
• Core - Fixed an issue where tree could not be loaded in web interface.
• Core - Fixed temporary access request report to be able to export it.
• PAM - Allow uppercase and underscore on SSH username.

Console

• Minor updates.

Features

Server

• Core - Entry Security Analyzer report can now be run on one or many vaults.
• Gateway - You can now allow a custom TCP Hostname on Devolutions Gateway.

Fixes

Server

• Core - Fixed an issue where Syslog configured with UDP didn't work.
• Core - Fixed an issue where VPN entries from system vault were not listed.
• PAM - Don't show Privileged Access section without PAM license.
• Recording Server - Fix an issue where recordings can't be indexed.
• Web - Several UI fixes.

Console

• Fixed an issue where activate encryption at rest failed.

Features

Server

• Core - Improved warning message when passwords don't comply with password security settings.
• Core - New Devolutions Server installation set 'Enable internet access' to true.
• PAM - Added checkout reason in logs/reports.
• PAM - Added support for preferred domain controller in Microsoft Active Directory provider.
• Recording Server - Added a tool to re-index recordings from different Devolutions Gateways.

Console

• New Devolutions Server installation set 'Enable internet access' to true.

Fixes

Server

• Core - Fixed an issue where activity logs could not be opened.
• Core - Fixed an issue where entries can't be saved in system vault.
• Core - Fixed an issue where no notification was sent if the delete operation was made with RDM.
• Gateway - Fixed an issue where Devolutions Gateway could not be used if no ID was configured on it.
• Web - Several UI fixes.

Features

Server

• Deprecated - Recording Server - Devolutions Gateway should now be used to act as recording server.
• Core - Added a search tool in System Settings.
• Core - Added IP List entry type.
• Core - Added Microsoft PowerShell Terminal Remoting directly in the Web Interface.
• Core - Added the ability to assign a vault owner.
• Core - Added the ability to link two user accounts to the same license.
• Core - Added the ability to request access to other vaults.
• Gateway - Devolutions Gateway can now act as recording server.
• Gateway - Devolutions Gateway can now be configured for load balancing.
• PAM - Added temporary just-in-time(JIT) elevation at checkout.
• PAM - Added the ability to propogate PAM passwords to after rotation.
• PAM - Expanded privileged account availability with PAM usage policies.
• Core - Added more information in log for login information (IP, iso code, emergency access).
• Core - Changed default strategy for Microsoft Active Directory "Get groups by user" from Principal to Directory entry token group.
• Core - Current and latest version of services/gateways are now shown in the system dashboard.
• Core - Improved Dashboard user interface.
• Core - SMTP server and Syslog server status are now shown in the system dashboard.
• Core - Temporary access can be created by the approver and permission will be granted to the user at the right moment.
• Core - Temporary access can be requested on entry with link to other entries for credentials, VPN.
• Core - Temporary access request can now be requested for future use.
• Core - Upgraded System Dashboard with Syslog and Email Services.
• PAM - Added more information in logs when an error occurs.
• PAM - Added support for PAM checkout requests in advance.
• PAM - Checkout request can now be created by the approver and permission will be granted to the user at the right moment.
• PAM - Added new setting to limit the checkout time.
• PAM - Scripts in AnyIdentity providers can now be ran as a specific user.

Console

• SQL Datasource can now be migrated to Devolutions Server.
• Now displays RDM minimum version in upgrade confirmation dialog.
• You can now keep user's configuration in appsetting.json between update.
• Now starts the scheduler service only if it is configured to start automatically.

Fixes

Server

• Improper deletion of resources in the user management feature.
• Core - Fixed an issue where search entries failed if current vault contains special charactere (%) in description.
• Core - Security Policies is now renamed Conditional Access Policies.
• Core - Submit a support ticket is available only for admin.
• Web - Several UI fixes.

Console

• Fixed an issue where recovery kit could not be uploaded/downloaded from Azure Key Vault.

Fixes

Server

• Core - Fixed an issue where emergency access failed and user could not access his server.
• Core - Fixed an issue where HeidiSQL entry type could not be selected.

Console

• IIS ASP.NET Core Module (ANCM) version 6.0.16 is now the version installed by prerequisites installation.

Features

Server

• Core - Added logs during Okta login.
• Core - Migrated from ADAL (Microsoft Azure Active Directory Authentication Library) to MSAL (Microsoft Authentication Library) for Azure.
• Core - Added support for ASP.NET 7.

Console

• Minor update.

Fixes

Server

• Core - Fixed an issue where custom fields migration was long.
• Core - Fixed an issue where Windows Authentication failed for first connection.
• PAM - Fixed an account where password rotation failed.
• PAM - Fixed an issue where PAM account can't be created by a non admin user.
• PAM - Fixed an issue where scheduled password rotation happens multiple times.

Fixes

Server

• Security Fix - Core - Fixed an issue where package created to be sent to support could be downloaded by non admin user.
• Core - Added sender username in secure message push notification in Workspace.
• Core - Fixed an issue where authentication migration from Devolutions Server user to another authentication type failed with an exception.
• Core - Fixed an issue where passwords with only permission to execute were not sent to DWL.
• Core - Fixed an issue where session start time in logs was invalid.
• Core - Increased the startup time limit to avoid server to be stopped during data migration when server is starting.
• PAM - Fixed an issue where loading privileged accounts list failed with a timeout.

Console

• Fixed an issue where removing security provider was failing with an exception.
• Fixed an issue where release notes could not be shown. WebView2 is now installed with Devolutions Server Console.
• Fixed an issue where remove security provider was possible even if no security provider was defined.
• Fixed an issue where upload/download of recovery kit to Azure Key Vault were failing.

Features

Server

• Core - Added support for user migration from Microsoft Azure Active Directory to Azure Active Directory (different domain name).
• Web - MikroTik entry can now be edited in DVLS web interface.

Fixes

Server

• Core - Fixed an issue where Azure AD groups were not migrated on startup and Azure AD groups were not found anymore for users.
• Core - Fixed an issue where entry security analyzer report was not including password lists.
• Core - Fixed an issue where locked application keys were not list in Users Locked report.
• Core - Fixed an issue where two logins were needed to access DVLS.
• Web - Several UI fixes.

Console

• Fixed an issue where server could be reinstalled after installation. The button is now disabled.

Features

Server

• Core - Improved performance when system retrieves Microsoft Azure Active Directory groups.
• Core - Report an issue can now be sent to any user, not just administrator.
• PAM - Added forbidden password check for standalone accounts.
• Web - Gateway list is now paged when you want to select a gateway on a connection.

Fixes

Server

• Core - Added logs when an entry is added or restored from the web interface.
• Core - Fixed an issue where checkouts were not visible for administrator in dashboard.
• Core - Fixed an issue where forbidden passwords list is not visible.
• Core - Fixed an issue where some folders were missing for DWL.
• Core - Fixed an issue where synchronizer created wrong folder structure.
• Web - Several UI fixes.

Console

• Fixed an issue where scheduler service was always down in system dashboard.

Features

Server

• Core - Added support for global images.
• Core - An issue on an entry can now be reported to notify administrators.
• Core - Notifications can now be sent to devices running Workspace.
• PAM - Added the ability to generate script headers of AnyIdentity Providers.
• PAM - Added the ability to test Microsoft PowerShell scripts of AnyIdentity Providers.
• PAM - AnyIdentity Providers can now be imported/exported.
• Web - Added System Dashboard to display services state.
• Web - Improved the dashboard to be customizable.
• Web - RDP session can now be launched through Web Client (via Devolutions Gateway).
• Web - VPN/Gateway can now be edited in Web Interface.
• Core - Added a new contact type Team/Department.
• Core - Added a new IT Asset data entry type.
• Core - Added a new vehicle data entry type.
• Core - Added a report to find connections with specific status.
• Core - Added a warning message if less than 10% of a license is available.
• Core - Added an Archived and Broken Entry status.
• Core - Added contact link support in Software/License entry.
• Core - Added many reports in the scheduled report list.
• Core - Added password generator button in certificate entry.
• Core - Added the possibility to assign a contact to the credit card owner.
• Core - Microsoft Authentication cache can now be deactivated.
• Core - User information from Microsoft users are now synchronized with DVLS users.
• Gateway - A reg file or a PowerShell Script can now be downloaded to configure KDC proxy.
• PAM - Added a link to PAM Provider GitHub repository in AnyIdentity Templates.
• PAM - Added timeout setting for SSH local user provider.
• PAM - Renamed Custom Providers to AnyIdentity Providers
• Web - Added custom fields edition.
• Web - Information on dashboard can now be clicked to see the specific information.
• Web - Moved DVLS license information under Administration - License.
• Web - Vaults can now be searched by description.

Console

• Added a new basic mode to install Devolutions Server.
• Recovery Kit can now be generated on demand.
• Recovery Kit can now be saved in Microsoft Azure Key Vault.
• You can now display release notes in HTML format.
• License Agreement is not displayed anymore, always available through a hyperlink.
• LTS version doesn't exist anymore, is has been renamed to "stable".
• Recording server is now started with LocalSystem instead of LocalService.

Fixes

Server

• Core - Fixed an issue where authentication cache was used even if it was disabled.
• Core - Fixed an issue where copy password button was not available in the overview when it should.
• Core - Fixed an issue where message about http connection in system dashboard was displayed even if the connection was https.
• Core - Fixed an issue where scheduled AD synchronizer created incorrect folder names.
• Core - Fixed an issue where users were not logged in even if the credentials were valid.
• Core - Fixed issue where administrators were not able to use Launcher.
• Web - Minor UI fixes.
• Web - Several UI fixes.

Console

• Minor UI fixes.
• Fixed an issue where activating encryption at rest failed.
• Fixed an issue where license type doesn't update in Web interface if license is entered through DVLS console.