Released: Mar 3, 2026

Server and Console 2026.1.6.0 での更新項目

機能

Server

• New Features:
  • Core - Added custom vault dashboard widgets with drag-and-drop reordering.
  • Core - Added Just-in-Time (JiT) access for SSH (sudo) sessions.
  • Core - Added new Contractors account type with expiration date support.
  • Core - Added support for SSH key certificates in the web.
  • Core - Added vault priority sorting.
  • Core - Admins can create preset dashboards for users.
  • Core - Licenses can now be purchased directly within DVLS.
  • Core - Multiple Improved and fixed with the synchronizer where they was mismatch with RDM.
  • Core - Users can now request a trial directly from the application.
  • Core - Users can now request sudo access when requesting checkout.
  • Gateway - Added RDP credential injection for more secure session launches.
  • Gateway - Added traffic event logs to privileged session monitoring.
  • PAM - Added MongoDB provider support.
  • PAM - Added PowerShell session recording.
  • PAM - Added the ability to automatically terminate active sessions when a PAM account is checked in.
  • PAM - Added UI to assign and manage risk levels for roles.
• Improvements:
  • Core - Added "Prompt on connection" support for linked VPN/SSH/Gateway sessions, matching the behavior already available for linked credentials.
  • Core - Added launch links on connections for quick session sharing.
  • Core - Added missing fields in the "Advanced" tab for SFTP connections.
  • Core - Added OTP support for linked external vaults.
  • Core - Added support for editing Delinea Secret Server entries directly within DVLS.
  • Core - Admins can set the default behavior for automatically checking in PAM accounts when closing entries.
  • Core - Corrected inaccurate syslog messages that reported successful logins incorrectly.
  • Core - Entra ID now enforces secret expiration with banner and email warnings.
  • Core - Entry security settings now use inherited values by default.
  • Core - Error reports now include connection type details.
  • Core - Improve Entry Security Analyzer report to include all relevant fields, matching the information already available in RDM.
  • Core - Improved license management, disabling a user now automatically removes their assigned licenses.
  • Core - Improved performance for access requests in RDM.
  • Core - Linked vaults can now point to entries in the same folder.
  • Core - Public API now supports CRUD operations for folders and vaults.
  • Core - Renamed Log Retention Policies to Database Retention Policies and added retention options for connection history, remote sessions, and traffic events.
  • Core - Simplified license assignment in data sources.
  • Core - Synchronizers now support scheduling by hour.
  • Core - Tags can now be used with inheritance rules.
  • Core - The public API now supports full CRUD operations for vaults, allowing administrators to create, read, update, and delete vaults programmatically.
  • Core - Users can now configure multiple MFA methods at once.
  • Gateway - Renamed "Virtual Gateway" to "Gateway ruleset".
  • Gateway - Sessions can now be recorded on a different gateway than the launch gateway.
  • Gateway - The Gateway Diagnostic window now displays whether Devolutions Agent is installed and running.
  • Gateway - The gateway list now automatically refreshes after an update request completes.
  • PAM - Added "Create folder" option when importing PAM accounts.
  • PAM - Added "Skip TLS validation" option in PowerShell provider settings.
  • PAM - Added "Workspace" as a supported application option in the PAM usage policies admin section.
  • PAM - Improved error message when no provider is specified on a PAM account.
  • PAM - Renamed "Scan" to "Account Discovery".
  • PAM - Users without a PAM license can now perform basic PAM operations, such as checking out PAM credentials, without requiring a full PAM license Assignment.
  • Web - Added a warning in the web interface when an OTP account name contains a colon (":"), consistent with existing behavior in RDM.
  • Web - Administrators can now set permissions on entry types that are not technically supported on the web.
  • Web - Users can now customize the "Add connection" favorites section.
  • Web Client - Multiple UI improvements.
  • Web Client - Updated dark theme.

Console

• Improvements:
  • Core - Improved performance for static resource loading by enabling HTTP/2 support when anonymous authentication is configured in IIS.
  • Core - Renamed the "Stable" release channel to "Extended maintenance" in the console to better reflect its support lifecycle.
  • Gateway - Added a new System Certificate Store configuration key for Devolutions Gateway in the console.

不具合の修正

Server

• Core - Fixed a regression where it was no longer possible to set a user as an administrator.
• Core - Fixed a scheduler timeout error that could cause scheduled tasks to fail intermittently.
• Core - Fixed an error occurring when too many vaults were present.
• Core - Fixed an error that occurred when editing account login information on a deprecated entry type.
• Core - Fixed an issue where exported logs from the DVLS Console were being cropped and truncated.
• Core - Fixed an issue where forbidden passwords could still be saved in a password list entry.
• Core - Fixed an issue where new Active Directory user accounts were not appearing in DVLS, preventing the auto-create on first login feature from Working correctly.
• Core - Fixed an issue where OAuth token rejections were incorrectly returning HTTP 200 with an empty response instead of a proper error code.
• Core - Fixed duplicate vault cards appearing on the dashboard.
• Core - Fixed notification emails being sent in English for users configured in French.
• Core - Fixed repeated migration attempts after SQL migration and server restart.
• Gateway - Fixed a issue where clicking "Close" from the session kebab menu did not always close the session on the first attempt.
• Gateway - Fixed a missing configuration option in the Web UI for allowing additional hosts through Devolutions Gateway.
• Gateway - Fixed an inconsistency in how Gateway tunnels were configured and displayed between RDM and the Web UI.
• Gateway - Fixed an issue where enabling vault-level security on a gateway prevented it from being used in gateway farms and PAM providers.
• Gateway - Fixed an issue where virtual gateways were not automatically deleted when their associated physical gateway was removed, leaving orphaned entries that no longer functioned.
• PAM - Fixed "Nobody" account appearing when "Ignore system users" was enabled.
• PAM - Fixed a security issue where non-administrator users could view other users' PAM actions in the Privileged Access logs.
• PAM - Fixed account discovery failure caused by circular security group membership.
• PAM - Fixed an error that occurred when attempting to add a folder to a newly created PAM vault during the import process.
• PAM - Fixed an issue where Domain Quick Scan was no longer working.
• PAM - Fixed an issue where groups located in the Builtin organizational unit were not visible when selecting groups for JIT (Just-In-Time) elevation.
• PAM - Fixed Local Windows scan failure when credentials were linked.
• PAM - Fixed SSH scan failure when sudo was configured with NOPASSWORD.
• Web - Fixed inconsistent rendering of secure notes set as Markdown across different platforms.
• Web - Fixed the Notification Subscriptions filter not working correctly.
• Web - Multiple UI fixes.

Console

• Core - Fixed basic installation failure when a generated password contained a single quote (').
• Gateway - Fixed an issue in the console where certificate configuration was cleared when editing a gateway, requiring users to re-enter the certificate.