Skip to content

Release Notes

RSS logo Subscribe to our RSS

Release notes for the June 8, 2025 update

Update Version 4.1.202506061256

New Features

Added Kerberos authentication support to the script execution on remote Windows computers.

As alternative to NTLM authentication in Windows networks, Kerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

Configuration to enable Kerberos authentication for the group of assets requires additional fields created on the Windows Host based asset type. These additional fields could stay hidden in the asset type thus inherited by all assets of this type or they could be overwritten for an individual asset.

  • Authentication is a Choice field with Basic, NTLM and Kerberos options.

  • KDC is a String field for the Key Distribution Center which is usually a Domain Controller.

  • Realm is the String field for Kerberos realm.

Server, User and Password come from the regular asset configuration. It is recommended to run Kerberos authenticated communications over SSL secure WinRMs transport protocol.

Security

  • Updated application client side WEB framework to the last version

Extensions

  • Added a navigation link to the tenant name in the tenant list screen.

  • Added context help to the labels on the Backup screen.

  • Added authentication type to the Windows script job output that might include Basic, NTLM or Kerberos.

  • Added WEB Framework version information to the About screen.

Fixes

  • Fixed the issue with the order of the system information entries on the about screen to show the license expiration date in the last row.

Release notes for the June 1, 2025 update

Update Version 4.1.202505301903

New Features

Added the option to customize WEB Login screen.

The option allows tenant and space owners to customize the image and prompt message displayed on the WEB login screen replacing vendor branding. Space specific image helps users to visually identify the site they log in to. Custom prompt allows administrators to inform users about site specific events such as maintenance window, site mission, training or documentation references.

Custom WEB login screen configuration is unique for each tenant and space inside the tenant and is inherited down the space hierarchy with the options to restore the default of overwrite the options of the parent space. It provides flexibility for tenant and space owners to manage visuals for all spaces in a single place with the option to overwrite settings for some individual spaces.

Security

  • Updated application client side WEB framework to the major version 20.

  • Updated internal scripting language component to the last version.

  • Updated PostgreSQL driver to the latest version.

  • Updated dashboard charting component to the last version.

  • Updated database connection pool component to the last version.

  • Updated server side test framework to the last version.

Fixes

  • Fixed the issue with detecting action permissions granted to a user group.

  • Fixed the issue with the blanket error message on the browser console when accessing the tenant license screen.

  • Fixed the issue with the dashboard chart displaying assets by type distribution.

Release notes for the May 18, 2025 update

Update Version 4.1.202505232020

New Features

Added support for MariaDB as a back end database

MariaDB is a widely-used, free, and open-source relational database management system. MariaDB is known for its performance, scalability, and security features, making it suitable for a security application as 12Port Platform.

MariaDB support extends previously supported variations of back end databases such as Oracle RDBMS, MS SQL Server, MySQL, PostreSQL in addition to the embedded database managed by the application itself.

Security

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the new series 7 version.

Extensions

  • Added visual indicator for disabled MFA providers on the MFA Rules edit and list screens.

Fixes

  • Fixed the issue with Windows application update when some of the folders or files in the deployment are locked by external processes.

  • Fixed the issue with creating batch and handler scripts during tenant initialization.

  • Fixed the issue with untranslated message on the application welcome screen that appears after login or tenant navigation.

  • Fixed the issue with default values visibility on the first tenant initialization screen during the application deployment.

  • Fixed the issue with displaying default value in the customizer Language selection.

  • Fixed the issue with missing default secret requirements in the base tenants.

  • Fixed the issue with executing Unix scripts using connection with private keys.

  • Updated context help for database selection on the tenant management screen.

Release notes for the May 18, 2025 update

Update Version 4.1.202505161855

New Features

Added MFA requirement option for Service Request and Unlock secure field actions.

The option allows to confirm user identity right before performing critical operations. Supported MFA providers include TOTP (Google Authenticator, MS Authenticator), Yubikey, email, Entra ID (Push with number matching and OTP using MS Authenticator), Duo Security (Push and OTP using Duo Application), and various flows run through RADIUS protocol.

MFA Requirement option allows flexible configuration for group of users and group of assets using Action Request selectors. The specific MFA provider is selected based on the MFA configuration for the users and groups.

With configured MFA Requirement both Service Request and Unlock Secret field actions require MFA confirmation every time during the approved period.

Security

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the last version.

  • Updated REST API documentation framework component to the last version

  • Updated application WEB container to the last version.

Extensions

  • Added support for pagination, filtering and sorting by script type, script role, name and script orchestration as well as export to PDF and CSV to the script library.

  • Added support to translate months names on the GUI to different languages for the date formats that include month name.

  • Added support to verify and establish trust to the SSL host given in the string field starting with ldaps or https on the Asset Edit screen.

  • Added support to display asset types in the scrollable list when creating a new asset to accommodate long asset type lists.

  • Added the option to reference member asset fields in the task scripts using runas_ prefix to distinguish them from the field of the main asset.

  • Added the option to reference asset field names with spaces in the task scripts using underscore (_) character in place of a space.

  • Added keyboard shortcut to save Entra ID configuration.

Fixes

  • Fixed the issue with the tooltip on the button to add asset members.

  • Fixed the issue with collecting script parameter for the run-as account.

  • Fixed the issue with direct authentication with Entra ID provider.

  • Fixed the issue with incorrect rendering month names on the GUI dates.

  • Improved the error logging message about periodic node check in.

  • Improved security of file access on the file system during WinRM calls.

  • Fixed the issue with the excessive number of unnecessary node process registrations.

  • Fixed the issue with creating new Service Request after request approval.

  • Fixed the issue with displaying Jobs report for the assets with no Generic Role tasks.

  • Fixed the issue with parameters that contain no values during script execution.

  • Fixed the issue with the option to review a secret field on the asset history screen.

Release notes for the May 11, 2025 update

Update Version 4.1.202505091857

New Features

Added microsegmentation support for outbound traffic

Microsegmentation of outbound traffic is a useful tool to implement compliance with industry or government requirements in regulated industries as well as to facilitate data leak prevention policies.

Microsegmentation of outbound traffic specifically added the following features:

  • Added the option to specify traffic direction when managing segmentation policy.

  • Added the option to specify traffic direction during creation or management of service requests for ad-hoc policy exceptions.

Security

  • Updated application client side WEB framework to the last version.

  • Updated Oracle RDBMS driver to the last version.

Extensions

  • Improved reliability of identifying Linux firewall rules by cross-tagging the rules on the endpoint with those in the application database.

  • Improved reliability of identifying Windows firewall rules by cross-tagging the rules on the endpoint with those in the application database.

  • Improved logging response from the Windows Firewall Rule Add script.

  • Added firewall logging information to the script execution.

  • Added the option to refresh the list of segmentation policies.

Release notes for the May 4, 2025 update

Update Version 4.1.202505021748

New Features

Added keyboard simulation script execution for SSH protocols.

Keyboard simulation script execution allows to execute commands that require interactive user input and could not be executed as part of shell scripts.

Keyboard simulation is driven by the Groovy script controller that allows to implement rich logic to type the input to the remote host through the SSH protocol and act based on the received result using procedural control flow.

Security

  • Updated application client side WEB framework to the last version.

  • Updated MySQL database driver to the last version.

  • Updated Duo Security driver to the last version.

  • Updated PDF export component to the last version.

Fixes

  • Fixed the issue with saving Mail MFA configuration with no name defined.

  • Fixed the issue with removing one of the SMTP options on the Mail MFA configuration editing screen.

  • Fixed the issue with the shortcut Ctrl-S on the Mail MFA configuration screen.

  • Fixed the issue with adding new configuration opens with the empty screen after adding previous configuration for the following screens: LDAP, Entra ID, Local Directory, SMTP, Templates, Duo Security, Mail-MFA, RADIUS, YubiKey, TOTP.

Release notes for the April 27, 2025 update

Update Version 4.1.202504251855

New Features

Added support for secure PowerShell communication with Windows Hosts.

The function allows to configure an asset to communicate with remote Windows hosts using secure WinRMs channel.

The function includes the following options:

  • Enable secure communications.

  • Configure non-standard communication port.

  • Enforce endpoint certificate validation

  • Enforce certificate host name validation.

  • Import endpoint certificate to the application keystore to use for endpoint identity validation.

Added microsegmentation support for Oracle Solaris platform.

The added support allows to manage services hosted by Oracle Solaris 11.4 servers in the network microsegmentation policies using native Packet Filter (PF) firewall feature.

The platform support is enabled through the initially hidden Oracle Solaris Host asset type with pre-configured fields for connection purposes and pre-configured tasks for network monitoring and policy enforcements.

Security

  • Updated application client side WEB framework to the last version.

  • Updated application server side framework to the last version for Linux X86, Linux Arm and Windows X86 and Windows ARM platforms.

  • Updated database connection pool component to the last version.

  • Updated HTTP communication component to the last version.

  • Updated REST API data management component to the last version.

  • Updated data processing component to the last version.

Extensions

  • Extended job output field on the Jobs report to include name of each executed script run individually or as a part of a batch as well as information about the transport used for the script execution including transport details: WinRM over HTTP or HTTPs, Text or Object Model processing, SSH communications, Groovy script, etc.

  • Added the scripting option to create firewall rules based on the generated rule ID

Fixes

  • Fixed the issue with host and IP address resolution for the unresolvable hosts.

  • Reduced the number and the size of error messages printed in the log about name resolution for unresolvable names.

  • Reduced the number and the size of error messages printed in the log about user authentication.

  • Fixed the issue with displaying all tasks in asset task list.

  • Fixed the issue with inconsistency of saving assets with hidden fields in the asset type.

  • Fixed the issue with inconsistency of saving assets with un-hidden previously hidden field.

Release notes for the April 20, 2025 update

Update Version 4.1.202504182033

New Features

Added support for Italian language.

Support for Italian language to the GUI and server side messages extends the application usability to Italian speaking users.

Added password strength indicator to user entered passwords.

The option allows users to judge the password strength used to access protected resources.

Password strength indicator is displayed in the scale Poor, Weak, Medium, Safe, Strong with the hint how to improve weak passwords. Password strength indicator is used for the Password Requirements Example, Local User Password and Asset password fields.

Extensions

  • Updated Linux scripts to POSIX compatible shell.

  • Added out of the box hidden Port field to Unix-based asset types to support non standard ports.

  • Added out of the box hidden Port, Management Port and Port Security fields to Windows Host asset type to support non standard fields as well as WinRMs protocols.

  • Added the option for Windows Host script execution on a non-standard Management Port.

  • Added Status Check, Interfaces Monitoring, Workloads, and Connections Monitoring scripts for the Oracle Solaris 11 OS.

Security

  • Updated application client side WEB framework to the last version.

  • Updated REST API and SSO data processing component to the last version.

  • Updated unit test component to the last version.

Fixes

  • Fixed the issue with the application update reset the modified scripts to the last out of the box version.

  • Fixed the issue with import configurations GUI labels.

  • Fixed the issue with duplicate keys in the language translation files.

  • Fixed the issue with the Profile / Account link available to the master tenant user in the asset tenant GUI.

  • Fixed the issue with Profile Subscriptions, My Requests and My Approvals links are available in the master tenant.

  • Fixed the issue with available Verify Trust label on the LDAP configuration screen in case there is no ldaps servers in the configurations.

  • Fixed the issue with the import assets configuration allowed save option when some mandatory parameters are not defined.

  • Added the option to sort the list of imports by type and created columns.

  • Fixed the issue with the option to sort import table by the column that does not allow sort.

  • Fixed the issue with Linux Enable Firewall logging script handling ipv6 tables.

  • Fixed the issue with templates processing when executing Unix scripts.

  • Fixed the issue with the Port Security field use to enable WinRMs protocol

  • Fixed the issue with using the user entered account in email format when logging in with AD / LDAP credentials even when LDAP configuration adds a suffix for short accounts.

  • Fixed the issue with deleting an asset or a space with unique permissions enabled some users to access the application dashboard with no permissions granted.

  • Fixed the issue with error handling support in the windows workloads detection script.

  • Fixed the issue with LDAP integration using service accounts in domain\user notation for certain account names.

Release notes for the April 13, 2025 update

Update Version 4.1.202504111850

New Features

Improved visual appearance of the application authentication component.

Updated login, logout, registration, TOTP, Yubikey enrollment and enforcement as well as Radius enforcement screens streamline the access to the application simplifying the authentication process.

Added password requirements support for the users in local directories.

Password requirements improve application security for the local users managed by the system as well as simplify the integration in the broader organization network.

Password requirements enforce local user passwords with the defined length, number of upper case, numeric and special characters. Password requirements could optionally enforce XKCD style of passwords combining several dictionary words with the separator character.

The application supports different password requirements for the users created in different tenant spaces as well as in different local user directories. The option allows a space to inherit password requirements from its parent spaces. The option also allows a custom local user directory to inherit the password requirements from the containing space to simplify management of same password requirements across spaces and directories.

Extensions

  • Improved performance of database access for network monitoring by loading significantly less data when reading firewall rule port information for the aggregated reports.

Security

  • Updated application client side WEB container to the last version.

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the last version.

  • Updated REST API Documentation component to the last version.

  • Updated SSO security component to the last version.

  • Improved security of loading message schemas during SSO login

Fixes

  • Fixed the issue with inactivity logout from the WEB GUI in the situations when multiple tabs of windows of the same browser access the application WEB GUI. The fix allows all tabs to stay active in case of the activity happens in one of the tabs. The fix also logs out all tabs when all of them are inactive.

  • Fixed the issue with defaulting report exports and notification to the USA date format when no other format is selected to match the default behaviour of the WEB GUI.

  • Fixed the issue with tenant subscriptions available for the master tenant user.

Release notes for the April 6, 2025 update

Update Version 4.1.202504041824

New Features

Added support for user defined date format in report exports and notifications.

This important internationalization option allows each user to select regional date format for the data exported from the system in the form of reports or notifications.

Extensions

  • Improved visual appearance of the application logout page.

  • Added the option to mass delete selected subscriptions.

  • Added an on-screen message and the error text before the attempt to create the tenant with name containing spaces and other special characters. The allowed name for the tenant include letters, numbers, dashes and underscores.

  • Updated context help for the notification templates.

  • Added support for event.tenant and connection.tenant placeholders in the email notification templates.

Security

  • Updates application client side WEB framework to the last version.

  • Updated database access component to the last version.

Fixes

  • Fixed the issue with displaying UTC instead of local time in report exports and notifications.

  • Fixed the issue with updating out of the box configuration templates that was not modified by users after the application update.

  • Fixed the issue with the insignificant error message when opening asset view in the non-activated application.

  • Fixed the issue with the subscription option is to be available for the space auditors and administrators only.

  • Fixed the issue with creating or updating subscription without conditions.