Skip to content

Release Notes

Release notes for the June 29, 2025 update

Update Version 4.1.202506271557

New Features

Added microsegmentation support for IBM AIX platform.

The support allows to manage services hosted by IBM AIX 7.2 servers in the network microsegmentation policies using native IPsec firewall feature.

The platform support is enabled through the initially hidden IBM AIX Host asset type with pre-configured fields for connection purposes and pre-configured tasks for network monitoring and policy enforcements.

Security

  • Updated application client side WEB framework to the latest version.

  • Updated database access framework to the latest version.

  • Updated database pool component to the latest version.

  • Updated MS SQL Server driver to the last version.

  • Updated application testing framework to the latest version.

Extensions

  • Added pagination, filter by name, type and destination, export to PDF or CSV formats options to the Parsers library to allow management of large number of parsers.

  • Added specific job results error message about failure to retrieve MSA or LAPS passwords from the Active Directory to simplify connection troubleshooting.

  • Added AIX and Solaris component servers to the out of the box LECA Segmentation taxonomy.

  • Unified REST API for script and parser libraries, and for asset types and assets task management.

  • Unified REST API for space and asset permissions management.

Fixes

  • Fixed the issue with breaking the application update on Linux servers when update runs as root for the deployments made by other users.

  • Fixed the issue with the linux update script artifacts when the setup script is updated.

  • Fixed the issue with out of the box taxonomy to not include empty synonyms.

  • Fixed the issue with 0 synonym repeated for both ICMP and all terms in the out of the box taxonomy.

  • Fixed the spelling mistake for traffic directions issue with out of the box taxonomy.

  • Added permit synonym to the firewall action allow in the out of the box taxonomy.

  • Fixed the issue with the context help about API Token description.

  • Fixed the issue with rudimentary Create Type option on the tenant update screen causing issues when selecting wrong update type.

  • Fixed the issue with creating asset import from CSV file.

  • Fixed the issue with preserving delay property for interactive tasks.

  • Fixed the issue with negative values in the task delay property.

Release notes for the June 22, 2025 update

Update Version 4.1.202506202141

Security

  • Updated application client side WEB framework to the latest version.

  • Updated application server side WEB framework to the latest version.

  • Updated structured data processing component to the latest version.

  • Updated logging and log streaming component to the latest version.

  • Updated REST API documentation component to the latest version.

  • Updated context help rendering component to the latest version.

Extensions

  • Added asset level Network Interfaces report accessible from the asset view screen.

  • Added IBM AIX script and parser to monitor network interfaces.

  • Added IBM AIX script and parser to monitor endpoint workloads.

  • Added IBM AIX script and parser to monitor active connections on the endpoint.

  • Added IBM AIX script and parser to monitor network connections on the endpoint using firewall logs.

  • Added IBM AIX scripts to enable and to disable firewall connections logging.

  • Added IBM AIX script and parser to monitor Fireall Rules on the endpoint

  • Added IBM AIX script to add firewall rule to the endpoint.

  • Added IBM AIX script to delete firewall rule from the endpoint.

  • Added the option to parse alternative ports specification for outbound firewall rules.

  • Added support for displaying the generated firewall rule key in the Firewall Rules report.

Fixes

  • Fixed the issue with reading IPv6 addresses what parsing network interfaces.

  • Fixed the issue with detecting connection violations under current policy set for monitoring or published policies for the assets not enforced for microsegmentation.

  • Fixed the issue with the Asset Workloads chart displaying interfaces with no attached workloads.

  • Fixed the issue in REST API name to access asset firewal rules list.

  • Fixed the issue with displaying policy name for the policies that have no descriptions on the asset firewall rules report.

  • Fixed the issue with using gMSA or LAPS accounts when they specified for the Active Directory configuration with the space in the LDAP configuration name.

Release notes for the June 15, 2025 update

Update Version 4.1.202506131931

New Features

Added support for the group Managed Service Accounts (gMSA) when executing scripts on Windows devices.

The group Managed Service Account (gMSA) is a managed domain account that provides automatic password management and the ability to delegate the management to other administrators or services. This minimizes the administrative overhead of a service account by allowing Windows to handle password management for these accounts.

Support for gMSA accounts in Windows Domain environment simplifies management of Windows devices by using fewer domain accounts without the need to manage service account credentials. With gMSA account use no password in microsegmentation asset delegating password management the to Windows Domain.

Added support for LAPS accounts when when executing scripts on Windows devices.

The Local Administrator Password Solution (LAPS) provides management of local account passwords of domain joined computers. This minimizes the administrative overhead of a service account by allowing Windows to handle password management for these accounts.

Support for LAPS accounts in Windows Domain environment simplifies management of Windows devices by avoiding management of the service account credentials. With LAPS account use no password in microsegmentation asset delegating password management to the Windows Domain.

Security

  • Updated application client side WEB framework to the last version.

  • Updated application WEB container to the last version.

  • Updated database access component to the last version.

  • Updated PostgreSQL driver to the last version.

  • Updated REST API documentation component to the last version.

  • Updated WEB application build environment with foundation framework packages to the last version.

  • Updated application test framework to the last version.

Extensions

  • Added IBM AIX script and parser to detect OS information and network status.

Fixes

  • Fixed the issue with detecting explicit parameters during script execution.

Release notes for the June 8, 2025 update

Update Version 4.1.202506061256

New Features

Added Kerberos authentication support to the script execution on remote Windows computers.

As alternative to NTLM authentication in Windows networks, Kerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

Configuration to enable Kerberos authentication for the group of assets requires additional fields created on the Windows Host based asset type. These additional fields could stay hidden in the asset type thus inherited by all assets of this type or they could be overwritten for an individual asset.

  • Authentication is a Choice field with Basic, NTLM and Kerberos options.

  • KDC is a String field for the Key Distribution Center which is usually a Domain Controller.

  • Realm is the String field for Kerberos realm.

Server, User and Password come from the regular asset configuration. It is recommended to run Kerberos authenticated communications over SSL secure WinRMs transport protocol.

Security

  • Updated application client side WEB framework to the last version

Extensions

  • Added a navigation link to the tenant name in the tenant list screen.

  • Added context help to the labels on the Backup screen.

  • Added authentication type to the Windows script job output that might include Basic, NTLM or Kerberos.

  • Added WEB Framework version information to the About screen.

Fixes

  • Fixed the issue with the order of the system information entries on the about screen to show the license expiration date in the last row.

Release notes for the June 1, 2025 update

Update Version 4.1.202505301903

New Features

Added the option to customize WEB Login screen.

The option allows tenant and space owners to customize the image and prompt message displayed on the WEB login screen replacing vendor branding. Space specific image helps users to visually identify the site they log in to. Custom prompt allows administrators to inform users about site specific events such as maintenance window, site mission, training or documentation references.

Custom WEB login screen configuration is unique for each tenant and space inside the tenant and is inherited down the space hierarchy with the options to restore the default of overwrite the options of the parent space. It provides flexibility for tenant and space owners to manage visuals for all spaces in a single place with the option to overwrite settings for some individual spaces.

Security

  • Updated application client side WEB framework to the major version 20.

  • Updated internal scripting language component to the last version.

  • Updated PostgreSQL driver to the latest version.

  • Updated dashboard charting component to the last version.

  • Updated database connection pool component to the last version.

  • Updated server side test framework to the last version.

Fixes

  • Fixed the issue with detecting action permissions granted to a user group.

  • Fixed the issue with the blanket error message on the browser console when accessing the tenant license screen.

  • Fixed the issue with the dashboard chart displaying assets by type distribution.

Release notes for the May 18, 2025 update

Update Version 4.1.202505232020

New Features

Added support for MariaDB as a back end database

MariaDB is a widely-used, free, and open-source relational database management system. MariaDB is known for its performance, scalability, and security features, making it suitable for a security application as 12Port Platform.

MariaDB support extends previously supported variations of back end databases such as Oracle RDBMS, MS SQL Server, MySQL, PostreSQL in addition to the embedded database managed by the application itself.

Security

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the new series 7 version.

Extensions

  • Added visual indicator for disabled MFA providers on the MFA Rules edit and list screens.

Fixes

  • Fixed the issue with Windows application update when some of the folders or files in the deployment are locked by external processes.

  • Fixed the issue with creating batch and handler scripts during tenant initialization.

  • Fixed the issue with untranslated message on the application welcome screen that appears after login or tenant navigation.

  • Fixed the issue with default values visibility on the first tenant initialization screen during the application deployment.

  • Fixed the issue with displaying default value in the customizer Language selection.

  • Fixed the issue with missing default secret requirements in the base tenants.

  • Fixed the issue with executing Unix scripts using connection with private keys.

  • Updated context help for database selection on the tenant management screen.

Release notes for the May 18, 2025 update

Update Version 4.1.202505161855

New Features

Added MFA requirement option for Service Request and Unlock secure field actions.

The option allows to confirm user identity right before performing critical operations. Supported MFA providers include TOTP (Google Authenticator, MS Authenticator), Yubikey, email, Entra ID (Push with number matching and OTP using MS Authenticator), Duo Security (Push and OTP using Duo Application), and various flows run through RADIUS protocol.

MFA Requirement option allows flexible configuration for group of users and group of assets using Action Request selectors. The specific MFA provider is selected based on the MFA configuration for the users and groups.

With configured MFA Requirement both Service Request and Unlock Secret field actions require MFA confirmation every time during the approved period.

Security

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the last version.

  • Updated REST API documentation framework component to the last version

  • Updated application WEB container to the last version.

Extensions

  • Added support for pagination, filtering and sorting by script type, script role, name and script orchestration as well as export to PDF and CSV to the script library.

  • Added support to translate months names on the GUI to different languages for the date formats that include month name.

  • Added support to verify and establish trust to the SSL host given in the string field starting with ldaps or https on the Asset Edit screen.

  • Added support to display asset types in the scrollable list when creating a new asset to accommodate long asset type lists.

  • Added the option to reference member asset fields in the task scripts using runas_ prefix to distinguish them from the field of the main asset.

  • Added the option to reference asset field names with spaces in the task scripts using underscore (_) character in place of a space.

  • Added keyboard shortcut to save Entra ID configuration.

Fixes

  • Fixed the issue with the tooltip on the button to add asset members.

  • Fixed the issue with collecting script parameter for the run-as account.

  • Fixed the issue with direct authentication with Entra ID provider.

  • Fixed the issue with incorrect rendering month names on the GUI dates.

  • Improved the error logging message about periodic node check in.

  • Improved security of file access on the file system during WinRM calls.

  • Fixed the issue with the excessive number of unnecessary node process registrations.

  • Fixed the issue with creating new Service Request after request approval.

  • Fixed the issue with displaying Jobs report for the assets with no Generic Role tasks.

  • Fixed the issue with parameters that contain no values during script execution.

  • Fixed the issue with the option to review a secret field on the asset history screen.

Release notes for the May 11, 2025 update

Update Version 4.1.202505091857

New Features

Added microsegmentation support for outbound traffic

Microsegmentation of outbound traffic is a useful tool to implement compliance with industry or government requirements in regulated industries as well as to facilitate data leak prevention policies.

Microsegmentation of outbound traffic specifically added the following features:

  • Added the option to specify traffic direction when managing segmentation policy.

  • Added the option to specify traffic direction during creation or management of service requests for ad-hoc policy exceptions.

Security

  • Updated application client side WEB framework to the last version.

  • Updated Oracle RDBMS driver to the last version.

Extensions

  • Improved reliability of identifying Linux firewall rules by cross-tagging the rules on the endpoint with those in the application database.

  • Improved reliability of identifying Windows firewall rules by cross-tagging the rules on the endpoint with those in the application database.

  • Improved logging response from the Windows Firewall Rule Add script.

  • Added firewall logging information to the script execution.

  • Added the option to refresh the list of segmentation policies.

Release notes for the May 4, 2025 update

Update Version 4.1.202505021748

New Features

Added keyboard simulation script execution for SSH protocols.

Keyboard simulation script execution allows to execute commands that require interactive user input and could not be executed as part of shell scripts.

Keyboard simulation is driven by the Groovy script controller that allows to implement rich logic to type the input to the remote host through the SSH protocol and act based on the received result using procedural control flow.

Security

  • Updated application client side WEB framework to the last version.

  • Updated MySQL database driver to the last version.

  • Updated Duo Security driver to the last version.

  • Updated PDF export component to the last version.

Fixes

  • Fixed the issue with saving Mail MFA configuration with no name defined.

  • Fixed the issue with removing one of the SMTP options on the Mail MFA configuration editing screen.

  • Fixed the issue with the shortcut Ctrl-S on the Mail MFA configuration screen.

  • Fixed the issue with adding new configuration opens with the empty screen after adding previous configuration for the following screens: LDAP, Entra ID, Local Directory, SMTP, Templates, Duo Security, Mail-MFA, RADIUS, YubiKey, TOTP.

Release notes for the April 27, 2025 update

Update Version 4.1.202504251855

New Features

Added support for secure PowerShell communication with Windows Hosts.

The function allows to configure an asset to communicate with remote Windows hosts using secure WinRMs channel.

The function includes the following options:

  • Enable secure communications.

  • Configure non-standard communication port.

  • Enforce endpoint certificate validation

  • Enforce certificate host name validation.

  • Import endpoint certificate to the application keystore to use for endpoint identity validation.

Added microsegmentation support for Oracle Solaris platform.

The added support allows to manage services hosted by Oracle Solaris 11.4 servers in the network microsegmentation policies using native Packet Filter (PF) firewall feature.

The platform support is enabled through the initially hidden Oracle Solaris Host asset type with pre-configured fields for connection purposes and pre-configured tasks for network monitoring and policy enforcements.

Security

  • Updated application client side WEB framework to the last version.

  • Updated application server side framework to the last version for Linux X86, Linux Arm and Windows X86 and Windows ARM platforms.

  • Updated database connection pool component to the last version.

  • Updated HTTP communication component to the last version.

  • Updated REST API data management component to the last version.

  • Updated data processing component to the last version.

Extensions

  • Extended job output field on the Jobs report to include name of each executed script run individually or as a part of a batch as well as information about the transport used for the script execution including transport details: WinRM over HTTP or HTTPs, Text or Object Model processing, SSH communications, Groovy script, etc.

  • Added the scripting option to create firewall rules based on the generated rule ID

Fixes

  • Fixed the issue with host and IP address resolution for the unresolvable hosts.

  • Reduced the number and the size of error messages printed in the log about name resolution for unresolvable names.

  • Reduced the number and the size of error messages printed in the log about user authentication.

  • Fixed the issue with displaying all tasks in asset task list.

  • Fixed the issue with inconsistency of saving assets with hidden fields in the asset type.

  • Fixed the issue with inconsistency of saving assets with un-hidden previously hidden field.