Main Focus: Responding to customer requests
Features and Enhancements
- Users can now reset their login password through a password reset email.
- Added configuration option to AD synchronization to prevent enabling and disabling users during synchronization.
- Added ability to synchronize email addresses for AD users.
- Added “LockedOut” feature so that failed authentication attempts locks out a user instead of disabling them.
- Added ability to specify whether or not Windows Service dependencies should restart after a password is changed remotely.
- Added ability to handle AD hierarchies that contain cycles in their groups.
- Added several new webservice methods to support the new Secret Server iPhone application.
- Added a password migration tool for Password Corral (See the Tools page in Secret Server for more details).
- Added option to enable a Keep Alive thread so that the ASP. NET worker process never gets shut down.
- Added an audit record for when the launcher is used.
Bug fixes
- Fixed bug where inactivity timeout did not work correctly.
- Fixed bug that allowed users to delete folders containing Secrets when the "Require folder for Secret" option was turned on.
- Fixed bug where Windows Integrated Authentication through AD did not work for domains not hosting Secret Server.
- Fixed bug where some AD hierarchies that had root folders with no users in them could cause null reference exceptions.
- Fixed bug where JavaScript was not getting cleared from cache on upgrades.
- Fixed bug that allowed users to view folders and their audits without the appropriate permission setting.
- Fixed bug where a Secret could be created from an inactive Secret Template if the query string was entered.
- Fixed webservices to observe IP address restrictions.
- Fixed bug where inactive roles were being displayed on Admin Role Assignment pages.


