All Activity

Hello Everyone, Today we have released build 9873. For full details, please refer to our changelog here https://www.clickstudios.com.au/passwordstate-changelog.aspx Regards Click Studios

Does anyone know how you can use OATH-HOTP on a spare key? I tried using the same secret key for both keys but after X amount of logins on my main key, the spare key keep getting rejected. TOTP works fine but I prefer the HOTP due to how quick and simple it is. I'm guessing currently there is no option for FIDO, PIV, U2F or spare HOTP.

Thanks Robert

Thanks! i found it.

sorry for my late reply. just wanted to check back that your solution from the documentation works perfectly fine. customer is happy (and me too many thanks, great product!

And logging out doesn't do it either! As I said in my original post.

You need to log out of Passwordstate. Just closing the browser won't do it.

+1

In the password list tree, the images for password lists do not align properly if the image isn't exactly 18px wide. I was able to align them by modifying the CSS class as below: .rtImg { width: 18px; } Unsure if that is the appropriate class to modify, but it seems to work and scratch my aesthetics itch. See attached image for unaligned (left) vs aligned (right) with the red line

I am logged on as an administrator, and am impersonating a test user. Now I want to STOP impersonating, but there doesn't seem to be a way to do it, and the manual doesn't say how. When I log off completely and log in again, I am still impersonating the user. How do I get out of this?

Hi There, Has anyone tried to use a newer version of ODAC than what the documentation says? Passwordstate Privileged Account Management Manual (clickstudios.com.au) section 21, points to ODAC122cR1 which was released in May 31, 2017. Can anyone confirm if a newer version works/is supported from here: Oracle .NET, Visual Studio, and VS Code ODAC Downloads for Oracle Database

+1

+1 would also love to see a roadmap here. Always great to have something to look forward to.

Hello Charlene, Please go to the screen Administration -> Feature Access -> Menu Access. Regards Click Studios

+1 for an export of all the configuration values in the Administration area. JSON format would be my preference.

Passwordstate still sending one LDAP request on 389 port if secure LDAP over 636 selected. Requst appears if we invoke manual AD group synchronization. May be it possible to disable this request on code layer?

Hi, i did ask him. His view is the same. If its hidden,where or how can he change it?

There are a few conditions Passwordstate may want to reach out to the internet, all of which can be disabled if desired: Scenario #1: It can contact our clickstudios.com.au website (13.75.255.213), to check an xml file for any new builds available. Configure Location: Administration -> System Settings -> Check for Updates Scenario #2: If you use DUO Authentication to authenticate into Passwordstate, this can reach out to the DUO API which is duosecurity.com Configure Location: Authentication for DUO is found under Administration -> System Settings -> Authentication Options Scenario #3: If you use SAML for authentication, this can reach out to the internet. Examples are using Azure or Google as your SAML provider, and the locations Passwordstate need to reach out to are dependent on which SAML provider you use. Configure Location: Authentication for SAML is found under Administration -> System Settings -> Authentication Options Scenario #4: If you use the HaveIBeenPwned feature in Passwordstate, to check for known bad passwords, Passwordstate can reach out to https://haveibeenpwned.com/ API via the following URL: https://api.pwnedpasswords.com/range/ Configure Location: Administration -> Bad Passwords Scenario #5: If you use Yubico One Time Passwords for authentication, which will need to reach out to yubico.com Configure Location: Authentication for Yubico OTP is found under Administration -> System Settings -> Authentication Options As long as you do not require connection to any of the options above, then you welcome to block access to the internet from your Passwordstate server. Regards, Support

+1

wrong post, excuse me

+1

+1 In our instance we have about 1000 passwords we'd like to reset on the same day. Currently you can only schedule X days or X months - which means over time 'drift' occurs. Being able to say reset on the 1st of every month, would stop the drift from occurring; along with an option to 'reset on the next scheduled reset' in the event of a failed reset. (IE: Rather than try again the following day, wait until the next schedule occurs).

Hello Everyone, Today we have released build 9866. For full details, please refer to our changelog here https://www.clickstudios.com.au/passwordstate-changelog.aspx Regards Click Studios

Issue: one or more users logs into Passwordstate, and they notice a long delay for the initial webpage to render. You many notice this delay of up to 30 seconds or more before all the folder and Password Lists are displayed. Cause: Each folder of Password List you see in the navigation tree requires a small bit of HTML to render. The more Folders and Password Lists requires more HTML, and with thousands of these objects, your browser could be rendering 10 to 20 megabytes of data each time you log in. Fix: For an affected user, get them to go to their Personal Preferences page, and enable Load On Demand. Log out and log back in again, and the performance of their initial load times should increase drastically: Apply Load on Demand to All Users: It's possible to use a User Account Policy to force some, or all users to use Load on Demand. If you have not used the User Account Policy feature before, this blog post explains what they are, and how to set them up: https://blog.clickstudios.com.au/develop-user-account-policies/ In your User Account Policy, setting #A11 is where you enable Load on Demand: Regards, Support