Password Safe V8 – Manual

Version 8.13.5.25731

Release

13.09.2021

Compatibility

The following client versions are compatible with AdminClient version 8.13.5.25731

  • Windows Client Version 8.13.5.25731
  • WebClient Version 8.13.5.25731

New

FullClient

  • It is possible to have reports generated on the changes made by Active Directory imports.
  • The function “Exclude last X passwords” has been removed from the password policies.
  • The login process has been adapted to make it more difficult for possible attackers to guess valid usernames.
  • Users can duplicate passwords only if they are also authorized to the corresponding form.
  • When creating a new AD profile, the two flags “Secure” and SecureSocketsLayer” are activated by default.
  • Active Directory objects can now be created or deleted in Password Safe simply by belonging to an Active Directory group.
  • The email notifications include the organisational unit where the Secret is located.
  • The tab with the list view in each module can’t be closed.

WebClient

  • The login process has been adapted to make it more difficult for possible attackers to guess valid usernames.
  • The opening and closing of the filter have been optimised and the mobile view adapted.
  • Users can duplicate passwords only if they are also authorized to the corresponding form.
  • A direct search for Active Directory objects has been integrated.
  • Active Directory objects can now be created or deleted in Password Safe simply by belonging to an Active Directory group.
  • The email notifications include the organisational unit where the Secret is located.
  • The tab with the list view in each module can’t be closed.

Server

  • TLS 1.2 and 1.3 are the two standard versions for encrypted communication.
  • If a user changes his password, all sessions that are still open are terminated.
  • The Discovery Service Scan has been optimised.
  • Password Safe is now DualStack capable.

AdminClient

  • The timeout of an active session can now be set individually for each client.

LightClient

  • The login process has been adapted to make it more difficult for possible attackers to guess valid usernames.

LightClient in the Web View

  • The login process has been adapted to make it more difficult for possible attackers to guess valid usernames.

Improvements

FullClient

  • SSH connections using a key file are easier to configure.

Browser Extensions

  • If the IP filter is activated, a possible second factor is no longer queried.

Fixed

FullClient

  • The default form can be reset in the global user settings.
  • The DesktopClient only prevents Windows from shutting down if changes are not saved.
  • The widget “My Team” in the dashboard shows all members of the selected organisational unit.
  • A translation error in the report “Logbook entries” has been corrected
  • RDP sessions in the external window can also be displayed in full screen.
  • When importing passwords, only the user himself has permission for the passwords.
  • The keyboard shortcuts work again in RDP sessions.
  • The cross-client login works again.
  • Authentication using Kerberos is possible again.
  • Notifications can only be seen by the user who configured them.

WebClient

  • The default form can be reset in the global user settings.
  • The form of an existing password can only be changed with the right “Authorise” or “Delete”.
  • The quality of a password is checked again when the form is changed.
  • The export of passwords or organisational units has been optimised.
  • When selecting possible forms for creating a password, you can navigate through the forms using the scrollbar.
  • During the AD import, all sub-objects are also selected when an object is selected and then synchronised.
  • Authentication using Kerberos is possible again.
  • The link to the Firefox Add-on Store now uses the https:// protocol
  • Notifications can only be seen by the user who configured them.

AdminClient

  • Databases deleted in the MSSQL Server Management Studio are deactivated in the AdminClient.

Browser-extensions

  • Logging in via the SSO agent works if the browser extension is configured accordingly.
  • The auto-fill via the SSO Agent has been accelerated.

SSO Client

  • The cross-client login works again.
  • The auto-fill has been accelerated.

LightClient

  • Authentication using Kerberos is possible again.

LightClient in the Web View

  • In the password generator – if any have been configured – the corresponding password policies are available for selection.
  • Users with an exclusive LightClient license can move passwords to other organisational units.
  • Authentication using Kerberos is possible again.
  • Users with LightClient-only licenses can tag passwords.

Setup Check hashes (SHA-512 Hash)

German Server Setup (pss8.13.5.25731-de.msi)
56cb7260d587d50afceca87ef53772c3106ec192de88695b247495022c768e03ac9a6a4e5e273f74c98d492e00ebb6f7134ff457cc80cd548e0aa90060b708b1

English Server Setup (pss8.13.5.25731-en.msi)
05fb18e29549b94f8b238cbe1904d44240af7bcd48a802d64ea9bb50d6e9149daffc46ceae942771de772496d7cd1d140bc55805606c5227cd68b755fc0c98d4

German Client Setup (psc8.13.5.25731.msi)
cd4a82995f45d19d1d4aa306025e296b1142fbd74c0da1ffbd2b8a3078ffeb9a58bbcb86f732d9f411c5fa0becb29ede937b56ecb20a40d81b16a2e4519b39de

English Client Setup (psc8.13.5.25731-en.msi)
473ef56a4d9f1cf12800437bdf869cbf7a5b4993079f9cd401206344c07285838c02e75d108f68fa62de126f935809556c2ae556bc1d49bbec2c0abb1beb1198

Was this helpful?

Yes No
You indicated this topic was not helpful to you ...
Could you please leave a comment telling us why? Thank you!
Thanks for your feedback.