Skip to content

Release notes for the January, 4 2026 update

Update Version 4.1.202601021524

New Features

Added the option to launch desktop applications in Zero Trust session on the RDS jump host using native desktop or mobile RDP clients.

The option enables development of Zero Trust Access with full session recording capabilities and optional MFA enforcement for a wide range of desktop applications ("fat clients") published via Remote Desktop Services (RDS) as Remote Applications accessed by native desktop or mobile RDP clients.

The option injects credentials into the remote application before unblocking user keyboard and mouse controls. The option never releases credentials to the RDS server or to the destination application to the user client.

The option is applicable to multiple use cases such as:

  • Database development.
  • Data analysis.
  • System administration.
  • Shared Web portal access.
  • Digital marketing.

All currently supported remote applications adapted to integrate with Zero Trust sessions established by the native desktop or mobile RDP clients:

  • Active Directory Users and Computers snippet.
  • AWS WEB Console.
  • IBM PC5250 terminal.
  • Mocha TN5250 Terminal.
  • MS SQL Server Studio.
  • PuTTY.
  • Microsoft RDP Client (mstsc).

Zero Trust sessions for remote applications established by the native desktop or mobile RDP clients optionally enforces MFA by interrupting the session at the beginning to interact with the user inside the RDP client to prompt and to confirm the secund authentication factor using various MFA providers such as

  • TOTP using various authenticator apps (Google, Microsoft, etc).
  • TOTP using email of the MFA code.
  • HOTP (Yubikey)
  • Microsoft Entra ID (Office 365) including number matching push.
  • Duo Security
  • RADIUS

Extensions

  • Upgraded the web application to a modern zoneless architecture for faster, more predictable performance.

  • Added the support for Zero Trust WEB sessions launching remote "fat client" applications on the RDS servers to return keyboard and mouse control to the user right after injecting credentials into the destination application without the need to wait for a predefined timeout.

  • Added progress indicator to the Asset Access report during building of the report page.

  • Updated Copyright year in the documentation, application and installers to 2026.

  • Added a progress indicator for the button to unlock the safe link on the safe links list.

  • Updated SMTP object icon on the expanded SMTP integrations list screen to reflect Entra ID or Basic authentication.

  • Added Save button on the bottom of the service request screen.

Security

  • Updated WEB application framework to the latest major version 21.

  • Updated Informix database driver to the latest version.

Fixes

  • Fixed the issue with the tenant label on the exported access profile report.

  • Fixed the issue with the name of the exported Action Request report.

  • Fixed the issue with the availability of the bottom Save button on the inherited asset level password requirements screen.

  • Fixed the issue with initially enabling save button on the peer node selection for the asset.

  • Fixed the issue with generating RDP File to support the option to launch desktop applications in Zero Trust session on the RDS jump host using native desktop or mobile RDP clients.

  • Fixed the issue with client-side license activation.

  • Improved WEB application performance by migrating some components to the standalone architecture.