Skip to content

Release notes for the September 14, 2025 update

Update Version 4.1.202509121602

New Features

Added public key authentication support for native SSH clients to access the application.

The update enables native SSH client access using public key authentication of the application user to the SSH Proxy as an alternative to the password authentication.

Public key authentication to SSH Proxy brings the following benefits:

  • Increase Security. When using private keys to authenticate, there is no need to transmit passwords over the network. And because the private key is kept on your local machine, it is less vulnerable to interception or attack.

  • Better Access Control. SSH keys can control access to the application server by restricting access only to authorized users with the corresponding private key with the option to disable the access for the selected keys.

  • Convenience. SSH keys can be more convenient and increase users’ productivity. The recommended practice is to encrypt keys with a unique passphrase.

  • Automation. SSH keys can be used in scripts and automation tools to automate tasks that require logging into a remote server. This can make managing and maintaining servers and applications easier and reduces the risk of a password being exposed.

Public key authentication supports both direct connections to the specified assets and command line shell interface access.

Security

  • Updated application client side WEB framework to the latest version.

  • Updated network streaming component to the latest version.

  • Updated command line processor component to the latest version.

  • Updated outgoing e-mail processor component to the latest version.

  • Updated internal scripting language component to the latest version.

  • Updated interchange data JSON processor component to the latest version.

Extensions

  • Added support to display detailed privileged access errors in the sessions established by the native RDP clients caused by the lack of the access approval or inability to find the requested asset.

  • Added progress timeline to the sessions player.

  • Added site permissions information into the Asset Access report.

  • Added Assets Access report to the list of container and asset view reports.

  • Added Asset ID to the Asset Access report and its export.

  • Added initially hidden VNC Host asset type with VNC protocol for access.

  • Added support to display host, account and shadow account in the job results.

  • Added the option to manage authorized keys for SSH Proxy public key authentication.

  • Added support to overriding too small screen resolution provided by the native RDP client.

  • Added Windows Discover Privileged Accounts script to report local administrators, Logon As users in the services, run as user in tasks or application pools.

Fixes

  • Optimized performance of the group membership collection for large number of ACLs.

  • Fixed the issue with the Windows Password Set by Shadow Account script to work with the account given in the domain\user notation.

  • Improved the troubleshooting logging for the sessions established by the native RDP clients.

  • Fixed the issue with the Backspace label on the session report.

  • Fixed the issue with the access profile action label to Allow and Record access.

  • Fixed the issue with API documentation for the API Tokens REST API.

  • Fixed the issue with the language translations for the API Token management events.