• |

Password Reset Server

Release Notes

PRS 2.2.000002 Release Notes

Features and Enhancements:

  • Added versioning to Windows Logon integration client (future releases will allow a direct upgrade through the MSI without requiring uninstall and reinstall).

Bug Fixes:

  • Fixed security issue where certificate problems could allow the user to use the Windows Logon integration client to get to Internet sites.
  • Fixed security issue where the user could get to Windows Explorer (only if using special inputs) through the Windows Logon integration screen.
  • Fixed issue where the Windows Logon integration screen could hang if the user closed the Password Reset Server browser too quickly.
  • Fixed issue where recreating Windows Logon integration configuration files failed on new installations (caused error in log).

PRS 2.2.000001 Release Notes

Main Focus : Security Fixes

  • Fixed issue where a user could access the explorer menu through the Reset Password process on the Login Integration screen. (Reported by customer and fixed within 24 hours)
  • Fixed issue where if the connection from the web server to the database was lost, a user could access the explorer menu through the Reset Password process on the Login Integration screen.
  • Fixed issue where machines with the Login Integration installed could lock up when logging out multiple times through Remote Desktop.

2.2.000000

Features and Enhancements:

  • Added Secure LDAP support for Active Directory.
  • Added support for Authenticated SMTP.
  • Improved performance of User Administration screen when displaying a large number of users.
  • Improved password reset logging.

Bug Fixes:

  • Fixed display issues in IE7.
  • Fixed issue where disabled users might not be re-enabled upon synchronization.
  • Fixed issue in Security Policy where a child OU might become unselected upon re-saving.
  • Improved email address validation.

2.1.000019

Features and Enhancements:

  • Added option to separately backup the application and database.
  • Added User Password Expiration Report.
  • Moved the Organization Unit Synchronization log into the Domain Synchronization log.
  • Removed the Remote Installation feature. Existing users will still be able to access this feature through the Legacy Remote Installation link under Windows Login Integration.

Bug Fixes:

  • Fixed bug where email validation did not allow a hyphen in the domain.

2.1.000015

Features and Enhancements:

  • Allowed users to select their own images for image questions.
  • Made determining the locked out status more fault tolerant.
  • Allowed admins to install licenses with a future start date.
  • Added AppSetting that allows users to log the IP Address of users when they are accessing through an internal proxy.
  • Added context based help links throughout the application.

Bug Fixes:

  • Fixed bug where the password expiration date could not be determined on some domains.
  • Fixed bug on diagnostics page where the page would timeout when the server uses a proxy.

2.1.000013

Bug Fixes:

  • Fixed bug where accounts in certain domains could not be unlocked.
  • Fixed bug where expiration notifications were sent to users in inactive security policies.
  • Fixed bug where if the application pool was recycled during a password reset, the user would get an error.
  • Fixed bug where pressing enter in Internet Explorer during reset steps could sometimes cause an exception.
  • Fixed bug where duplicate answers could sometimes be inserted.
  • Fixed bug where styling would be incorrect on some pages when using an SSL load balancer.

2.1.000010

Main Focus - Answer Import

Features and Enhancements:

  • Added bulk import for answers.
    • Admins can now upload a spreadsheet or XML file to pre-populate user's answers.
  • Created new "Clear Answer" permission to allow Admins to clear all answers for a question.

Bug Fixes:

  • Fixed bug where users weren't put into OU's during the first synchronization run.

2.1.000001

Main Focus - Ease of Use

Features and Enhancements:

  • Added MSI installer for the initial install.
  • Added instructional video for getting started with Password Reset Server to the Dashboard.
  • Added the configuration setting to force HTTPS.
  • Updated licensing to allow one free User if there is no installed license for testing purposes.
  • Improved the Windows Login Integration to first load a temporary page and allow HTTP if HTTPS is not enabled.
  • Added the ability to manually set an AppSetting to only synchronize certain OUs.

Bug Fixes:

  • Fixed display issue where Minimum Correct Answers would display 'All' even when another number was sent.

2.1.000000

Main Focus - Reporting and Question Thresholds

Features and Enhancements:

  • Reporting
    • Reports page allows administrators to view standard reports, or to create reports with SQL and charting options. Reports can use a variety of 2D or 3D charts.
    • Reports can be displayed with all their associated data points (grid).
    • Reports can be placed into categories, and these categories and their reports can be organized using drag and drop.
    • Reports can have rows with different colors based on data values.
    • Reports can be created using parameters such as start date, end date, and user ID.
  • Question Thresholds on Security Policies
    • Ability to lower the Question threshold on enrollment so users are able to skip questions and answer the ones pertinent to them.
    • Ability to allow the user to get only a percentage of questions correct for confirming their identity during a reset.
  • Bulk Exclusion can be done based on the Active Directory group.
  • Added the ability to change the local administrator's email address.

Bug Fixes:

  • Fixed issue with manual and scheduled Backups.

2.0.00007

Main Focus: Domain Synchronization Performance

Bug Fixes and Enhancements:

  • Fixed memory issue and increased efficiency for synchronizing larger domains.
  • Updated progress bars to better show synchronization details.
  • Added Admin Notification for when the application is running in 32-bit mode.
  • Added offline upgrade option to the installer.

2.0.00001

Bug Fixes:

  • Updated the Unlock Account button to validate if the privileged domain credentials does not have permission to unlock the account.
  • Fixed issue with retrieving the Expiration Date from AD if a user has never had that value set.

2.0.000000

Main Focus - SMS and ProxStop™

Features and Enhancements:

  • Added multi-factor SMS question.
  • Added support for ProxStop™ as an alternative phone and SMS service provider.
  • Added configuration setting to allow logging in using Domain\User without showing the available domains in a drop down list.
  • Added a second image set of landmarks for the image question.
  • Added ability to Clear Answers on a question to force users to re-enroll for that question.
  • Improved the UI on selecting users for Security policies.
  • Ability to change the Local Administrator’s password.

Bug Fixes:

  • Improved validation message for certain domain policy errors when attempting a password reset.
  • Active Directory synchronization supports non-standard characters in Organization Unit name.

1.1.000016

Features and Enhancements:

  • Unlock Only Option
    • Users can now opt to just unlock an account instead of resetting the password.

    Bug Fixes:

  • Updated password expiration date population for notification emails.

1.1.000015

Features and Enhancements:

  • Greatly improved Active Directory synchronization performance.
  • Added Security Hardening Report.
  • Added option to Force HTTPS in the configuration.

    Bug Fixes:

  • Fixed bug where adding more than 1000 computers in a single OU could cause synchronization issues.
  • Fixed bug where scrolling issues could occur if a user had many questions assigned to his security policy.
  • Fixed bug where containers with more than 100 OUs on the same level did not display properly when assigning security policies.

1.1.000012

  • BUG: Fixed issue with resetting password on an account using minimum password age.

1.1.000011

Main Focus: Responding to customer requests to make GINA extension deployable through Group Policy and to provide password expiration notifications

  • Added MSI Installer to easily deploy GINA extension to Windows clients (including through Group Policy).
  • Added configurable email alerts to end users when their AD password will be expiring soon.
  • Domain policy password requirements are now respected for password resets.
  • Added ability to synchronize specific computers when deploying GINA extension using the web interface.
  • Reduced the number of System Log entries from various synchronizations.
  • Added separate page (DBConnectionReset.aspx) to allow users to change their database connection information without needing to go through the installer.
  • BUG: Fixed issue where Organization Units and Computers would sometimes not get synchronized when a new domain was added.
  • BUG: More robust computer synchronization.
    • Prevented situation where connection to the domain controller could fail.
  • BUG: All computers found on the Domain Controller will now be visible even if the computer could not be reached across the network.

1.1.000002

  • BUG: Fixed issue where Computer Synchronization would stop if a getting the detailed information failed on a computer
  • BUG: Fixed UI styling for the Organization Unit Tree view and Admin Mode button in IE 7.0
  • Removed Domain Validation for specific Reset permission

1.1.000001

  • BUG: Fixed issue where duplicate users would be created for the parent and child domain.

1.1.000000

  • Added Windows Logon Integration support for Windows XP and Windows Server 2003 (including 64 bit versions).
  • Added the ability to view users in an OrganizationalUnit when assigning users to a Security Policy.
  • Improved Active Directory Synchronization to log any errors retrieving a user and continue synchronizing the domain.
  • Improved the Enrolled Report to list unassigned users separately from un-enrolled users.

1.0.000000

  • Streamlined installation steps to avoid synchronization and simplify the process.
  • Added ability to assign users to a Security Policy based on their Active Directory Organizational Unit (OU).
  • Added ability to exclude Users on an individual basis.
  • Added ability to deactivate domains.
  • UI Enhancements to simplify the look for standard Users and separated Administration pages.
  • Added dashboard for Administrators with configuration alerts.
  • Added automated backup for disaster recovery.
  • Added multi-factor phone question - verifies identity by phone.
© 2012 Thycotic