support

Issue: You are seeing the error below when trying to perform resets, discoveries or heartbeats on Oracle database accounts: Fix 1: Ensure you have downloaded and installed the Oracle ODAC components as per Section 4 of the Privileged Account Management Guide: https://www.clickstudios.com.au/downloads/version9/Passwordstate_Privileged_Account_Management_Manual.pdf Fix 2: In Passwordstate, check the path in Administration -> System Settings -> Password Resets tab for the path to your Oracle ODAC components. Confirm this path is the correct path where you have them installed on the web server. Fix 3: Log into your web server and open the properties of the Oracle.ManagedDataAccess.dll file. It's possible it is blocked, and unblocking this file will fix this issue. You should restart your Passwordstate service if you unblock this file. Regards, Support

Issue: You have a Password List set up for automatic resets, and you'd like to be alerted by email when the scheduled resets occur. Fix: Set up a scheduled report by following the instructions below: Click Scheduled Reports -> Add Report Select Custom Auditing Report, and choose the option to not send the report if it produces no results. Consider including a CC email address, otherwise the report will be sent to you only. Choose the schedule of your choice, in this example we are having the report daily at 8am. Select the Password List where the passwords are stored, choose the Password Reset Successful activity type. Only query the previous 1 day of auditing data, or match this value to the frequency of you report. Select the Windows Service filter, and if you want to filter on one specific password record, consider the Filter By User Account or Description. When the password for any account in this password list has been successfully updated by scheduled reset, you will now be emailed that this event has occurred. Regards, Support

Hello Mike, With this setting, you get all the same features in the Browser Extension, as you do internally i.e. form-filling, saving new web site logins, and updating web site logins. But when using the App Server URL like this, you do not get access to the full UI of Passwordstate, as this is installed internal to your network, and not in your DMZ. I hope this clarifies. Regards Click Studios

Hello, Unfortunately this is not possible in our software. You can however search in the API, if that is of any help to you. Regards Click Studios

Hello Michael, We've emailed all customers previously to let them know the In-Place Upgrade feature is offline for now, whilst we re-work the upgrade feature for our software. You can still upgrade using the Manual Upgrade method, and please see instructions below for this. First delete the file c:\inetpub\passwordstate\upgrades\passwordstate_upgrade.zip if it exists Upgrading to latest build when using version 8 – ‘Section 6. Manual Upgrade Instructions’ - https://www.clickstudios.com.au/downloads/version9/Upgrade_Instructions.pdf You first need to upgrade to build 8995, before you can upgrade to version 9. And please take note of the new System Requirements at the beginning of that document. Regards Click Studios

When installing Passwordstate 9, the server you install it on requires Powershell 5, and at least .NET Framework 4.7.2. Here's how to check the versions of these on your Passwordstate web server: Powershell: Open Powershell on your server and type in $host. This will return the version you are running and it needs to be at least 5.0 .NET Framework: Whilst you have Powershell open on your server, paste in the following code and hit enter: Get-ChildItem 'HKLM:\SOFTWARE\Microsoft\NET Framework Setup\NDP' -Recurse | Get-ItemProperty -Name version -EA 0 | Where { $_.PSChildName -Match '^(?!S)\p{L}'} | Select PSChildName, version The version you are running should be 4.7.2 or higher. Screenshot below of results: Regards, Support

Hello, Please refer to section '6. Manual Upgrade Instructions' in the following document for your upgrade - https://www.clickstudios.com.au/downloads/version9/Upgrade_to_Passwordstate9_Instructions.pdf It shows how you can manually download the upgrade file, and place it in the correct folder. Regards Click Studios

Hello Matt, Below are the instructions for this method - you can get this key from the screen Administration -> System Settings -> API. Regards Click Studios

On your Passwordstate web server, open IIS and navigate to your Passwordstate website. Click o the Authentication button: Now right click Anonymous Authentication and select Enable: This completes the process. Regards, Support.

Hello, You will need to edit the properties of your Password List, and uncheck the Bad Passwords option you see below in my screenshot, Regards Click Studios

Excellent - thanks

Hello Maksim, Sorry, I forgot to include the page for you - https://www.clickstudios.com.au/passwordstate-checksums.aspx Regards Click Studios

Hello, We've now converted these pages to PDF's - please see below: https://www.clickstudios.com.au/downloads/version9/Move_New_Database_Server.pdf https://www.clickstudios.com.au/downloads/version9/Move_New_Web_Server.pdf Regards Click Studios

Hello, You cannot upgrade directly from that build of version 8 to version 9. The only build of version 8 you can upgrade to version 9 from us build 8995. On the following page, please download the full install of build 8995, and install this on your new server. It will then upgrade your DB to build 8995. You can then upgrade again to version 9, using section '6. Manual Upgrade Instructions' in the following document https://www.clickstudios.com.au/downloads/version9/Upgrade_to_Passwordstate9_Instructions.pdf Regards Click Studios

Hello Jean, At this stage we only support the two fields, and OTP, in our browser extensions. You can store the extra data in the password records, but you will need to manually copy and paste the contents. Regards Click Studios

Hello, Thanks for the script, and we will take a look at get back to you. Can you confirm if you are using more than one Passwordstate web server? If so, can you also send screenshots of the Authorised Web Servers screen in Passwordstate, and also let us know what SQL Server Replication you are using? Thanks Click Studios

Hello, This issue relates to SQL Server not being able to insert a record into the DB. We've only seen this before when customers are using SQL Server Transactional Replication, and the High Availabilit instance of Passwordstate was not set to be passive i.e. read only. Is this your setup? If so, if you go to the screen Administration -> Authorised Web Servers, are the roles for your servers set correctly? If so, please contact us via the following page, as we will need to check your database schema to ensure it is correct - https://www.clickstudios.com.au/support.aspx You can provide us a copy of your schema by following this article - https://www.clickstudios.com.au/documentation/generate-database-schema.aspx Version 9 also required .NET Framework 4.7.2 or higher, but we do not believe this is your issue. Thanks Click Studios

Hi Mike, We will answer your support email for this, as we might need to request some data. Regards Click Studios

Hello Mika, As long as your settings in Passwordstate are correct for the One-Time Password fields, then generally this is a time issue on your phone - please ensure your phone time is not more than one minute out compared to your Passwordstate web server. Regards Click Studios

Hello Jeffrey, We do not have any methods in our API for this still sorry. Not sure if it helps, but on the screen Administration -> Password Folders, you can bulk delete a Folder, and all nested Folders and Password Lists. Regards Click Studios

Hi Guys, We're not sure how this would work if we implemented it i.e. how would we know which authentication screen to direct them to? Did you know user's can specify their own Authentication option on their Preferences screen? And on the screen Aministration -> System Settings -> Authentication Options tab, there is the option "Hide the following Authentication Options on User's Preferences screen" which can also be used. Regards Click Studioos

Hello jtstuedle, The only feature we have for automatically creating User Accounts in Passwordstate is when you synchronize Active Directory Security Groups - for On Premise AD. If you need some sort of feature for this, then we can move this post into the Feature Requests area of the forums? Regards Click Studios

Issue: One or more users are locked out of the system. Closing the browser and reopening , and browsing to Passwordstate does not not resolve the issue. Error message you get is as per screenshot below: Cause: In Passwordstate 9, and new Brute Force Attack feature was introduced, to mitigate against scripted attacks, especially when exposing Passwordstate on the internet. Once a computer has tried several unsuccessful attempts to access your site, they will be locked out permanently until a Passwordstate Security Administrator manually removes the blocked IP Address from the system Where to Do This? Under Administration -> Blocked IP Addresses: If you find you are locked out of the system, you should access Passwordstate via the Emergency Account to unblock the IP Address. Please see this forum post for more information on this: https://www.clickstudios.com.au/community/index.php?/topic/1887-recover-emergency-access-password/ More Information: If you use a Proxy Server, Load Balancer or Firewall in front of your Passwordstate website, and the IP Address of that device is captured as a Brute Force lockout, logging directly into your Passwordstate web server and deleting the IP Address using the method above will fix this. But for a more permanent solution you should set your Device details under the Administration -> System Settings -> Proxy & Syslog Servers -> X-Forwarded-For Support section. This way it will lock out the IP Address of the users device, not the Proxy server itself. Note: Any network devices such as a Load Balancer, Proxy or Firewall that are being reported as being locked out may need configuring X-Forwarded-For support. You can relax the Brute Force attack rules under System Settings, as per below screenshot: Regards, Support

Excellent - thanks for letting us know. Regards Click Studios

Hi Lennart, No sorry there has not been, as we've never seen the issue ourselves - we need to replicate an issue in order to fix it. And we believe it's some sort of IIS caching issue, and a reboot of the web server normally fixes it - so it's not a code thing we are able to provide a fix for. Are you still seeing this after a reboot? If so, can you please edit the file c:\inetpub\passwordstate\web.config file, and turn CustomErrors off. When you save the file and access the site again, does it report the error? Is your screen reporting this generalerror.aspx, or customerror.aspx? Thanks Click Studios