Skip to content

Release notes for the March, 15 2026 update

Update Version 4.1.202603122011

New Features

Added PowerShell Connection Brokering for Windows Endpoints.

Introduced the ability to broker PowerShell connections to Windows endpoints through the PAM platform. This feature enables Zero Trust access from native PowerShell clients without exposing or transferring endpoint credentials to the client device.

The broker transparently intercepts and routes PowerShell remoting traffic through the PAM server, which securely injects privileged credentials stored in the PAM vault. Users can establish fully interactive remote PowerShell sessions or execute individual commands while privileged credentials remain protected and never disclosed.

The PowerShell broker operates in an agentless mode, requiring no additional software on either the client or the target Windows endpoint. All PowerShell traffic is monitored and controlled directly by the broker, enabling secure and governed privileged access.

Supported capabilities include:

  • Real-time credential injection into PowerShell session traffic
  • Role-based access control (RBAC) for PowerShell connection permissions
  • Flexible request approval workflows, including automatic approval, selective rejection, and multi-layer approval chains
  • Secure brokering of PowerShell connections to isolated datacenters through peer node gateways
  • Event logging for brokered PowerShell session activity

Added MCP Server for AI Agent Credential Access

Added support for a Model Context Protocol (MCP) server to provide a secure, standardized interface for AI agents to discover authorized data sources and obtain credentials for connecting to external systems, tools, and repositories.

The MCP server acts as a plug-and-play bridge between AI agents and enterprise resources, enabling agents to search for accessible data sources, request access, and retrieve connection parameters according to defined security policies.

Supported capabilities include:

  • Automatic discovery of available data sources and access capabilities by AI agents

  • Role-based access control (RBAC) for granting access to discoverable data sources

  • Flexible request approval workflows, including automatic approval or multi-layer approval chains

  • Event logging and audit trails for credential and access parameter retrieval

Extensions

  • Added Asset Type Secret with Password and Tags fields.

Security

  • Updated application WEB framework to the latest version.

  • Updated WEB HTTP Sessions driver to the latest version.

  • Updated REST API component to the latest version.

  • Updated PDF generation component to the latest version.

  • Updated Line Reader component used in the sessions established by native desktop or mobile SSH clients to the latest version.

  • Updated Code Editor commands, state and view components to the latest version.

  • Updated client side security sanitation component to the latest version.

Fixes

  • Optimized performance of dashboard chart component by replacing 3rd party wrapper component with the lightweight implementation.

  • Fixed the issue with completing the session after failing to save session recording.

  • Fixed the issue with failure to save sessions recording to the invalid recording storage.

  • Fixed the issue with internal label key present in the feedback message about the mass operations execution.

  • Fixed the issue with Enforce Policies operation executed for the single asset from the asset list actions menu.

  • Fixed the issue with detecting default WinRm firewall rule status on the non-English language Windows devices.