Viewer

  SpanKey Changelog

File: Changelog_spankey.txt
Size: 5 KBytes
MD5: F8CE1F8C38A047850689C4FF78C6EBF2

2.0.6-1
     - Added contextual authentication when extra login factors is enabled.
       > Users do not need to re-enter the LDAP/MFA password for all servers
         for a limited period as long as the connect from the same source IP.
       
2.0.6
     - This update is required for WebADM version >= 1.7.6.
     - Fixed Sudo Commands not working when configured on both user/group and
       client policies.
     - Improved SSH generation time.
     - Highly improved ECC key support.
     - Allow existing key import for all supported key types.
     - Prevent import for key not matching the key lenght in self-services.
     - Added password change retries count (to be used in upcoming SpanKey agent).
     - Re-scoped some application settings.
       > If you configured blocking policies or geo-fencing on a user or group,
         please configure it in the application or client policy.
     
2.0.5
     - Added client server hostname in the SQL logs.
     - Added final support for Auditd dynamic rules.
     - Added support for variables in the welcome message.
     - Added support for WebADM cluster-level caching API.
     - Added support for external public key registration via self-services.
       > A new Manager method allows registration with external keys too.
     - Added support for sudo commands and privilege elevations in WebADM.
       > Sudo can be configured in client policies, users and groups.
       > The sudo feature will be available in SpanKey Client v2.1.2.
     
2.0.4
     - Added an options to limit the max usage count for a SSH public key.
       > Automatic re-enrolment email link via SelfReg is supported.
     - Added login statistics (login count, success and failures) to the
       SpanKey user data.
     - Fixed broken key export in PPK format (Putty).
     - Fixed key register with the Manager API when no key size is provided.
     - Added login shell per host via a Client policy configuration.
     - Added schedulable reporting utility in 'bin/report' with CSV output.
     - Added Auditd rule configuration for terminal and SCP sessions.
       > This feature will be available with SpanKey client v2.0.3.
     
2.0.3
     - Added support for WebADM v1.7 (it does not work with previous versions).
     - Fixed issues with ECC key management.
     - Fixed search base when the group search base is defined on the domain.
     - Added support for accounts with local authorized keys files.
       > Accounts list can be adjusted per client policy.
       > Authorized keys files can be configured on the server.
       > Authorized keys files can also be set per user and per group too.
     - Added NSS caching optimization under very high load.
     - Added support for records with Auditd event logs.
     - More and better SQL logs.
     
2.0.2
     - Added OTP challenge response support with the optional MFA login.
       > OTP retries are also supported.
     - Added LDAP and LDAPOTP options for MFA login.
     - Added a terminal session unlock feature.
     - Removed trust domain support (dropped in the upcoming WebADM 1.7.0).
     - Added LDAP password change feature via SpanKey PAM module.
     
2.0.1
     - Shared account login shows the real user identity in the audit log.
     - Unlock retries are limited to 3 LDAP password attempts.
     - Added support for MinUID and MinGID policy settings.
     - Added record session's data size limitation.
     - Added support for expired password reset links via email and SMS.
     - Added optional MFA login (only SimplePush is supported with the current
       SpanKey Client).
     - Added user notifications when password or SSH key expired.
     - Multiple code and performance enhancements.
     
2.0.0
     - Brand new version with compatibility break with SpanKey v1 branch.
     - Added session recording capabilities (WebADM 1.6 Record feature).
     - Added support for SpanKey client agent v2.0 for Linux.
     - New NSS integration.
     - Much faster response time.
     - Added support for SSH session lock screen.
     - Added support for offline SSH access.
     
1.0.3-3
     - Added the possiblity to import an existing RSA SSH public key.
       > Available under the admin portal actions only.
     - Added localized messages API compliance with WebADM v1.5.10.
     - Fixed an issue with NSS users missing login shell.

1.0.3
     - Added error IDs to the error reponses.
     - Added support for WebADM service protocol API version checking.
     
1.0.2
     - Fixed a NSS issue when no Posix user or no Posix group exists.
     - Added an option to download both the PEM and PPK SpanKey private
       keys bundled in a ZIP file.
     - Added the %GROUPS% variable to the Authe Success URL setting.
     - Added session monitoring with session start and stop audit.

1.0.1
     - Added the SpanKey NSS methods.
       > SpanKey is now a NSS provider for Posix users and groups.
       > Integrated Linux systems do not need NSS-LDAP anymore.
       > Note that SpanKey NSS functionalities requires SpanKey client
         v1.0.1 which will be release soon.
     - The authorized keys API does not append the username to the keys.
     - Many optimizations.

1.0.0
     Initial SpanKey release.