Skip to content

Release notes for the June, 28 2026 update

Update Version 4.1.202606261936

New Features

Added support for key-based authentication to Microsoft Entra ID applications

Key-based authentication improves security when integrating with Microsoft Entra ID applications:

  • Private keys never leave the client. Instead of transmitting a shared secret over the network, the client signs a time-stamped authentication assertion with its private key. Microsoft Entra ID validates the signature using the corresponding public certificate.

  • Independent credential management. Each client can use its own certificate and private key, making it easy to grant, revoke, and rotate credentials for individual clients without impacting other applications or integrations.

Key-based authentication is supported across a wide range of Microsoft Entra ID integration scenarios, including:

  • Authentication: Direct and single sign-on (SSO) user authentication
  • Authorization: User and group authorization, including permission assignment, revocation and reporting
  • Multi-Factor Authentication (MFA): Verifying user identity before granting access to remote sessions or sensitive data.
  • Import: Importing virtual machines and accounts into the application vault
  • Account Management: Password reset, reconciliation and verification for Microsoft Entra ID accounts
  • Azure AI: Integrating with Azure AI services to analyze and query application data.
  • Notifications: Sending email through Microsoft 365

Security

Components Update

  • Updated application WEB framework to the latest version.

  • Updated WEB container component to the latest version.

  • Updated REST API documentation component to the latest version.

  • Updated markdown rendering toolkit to the latest version.

  • Updated database access component to the latest version.

  • Updated SSH and PowerShell Proxy sessions player component to the latest version.

  • Updated dashboard charts component to the latest version.

  • Updated Code Editor command, view, language and state components to the latest version.

  • Updated HTTP communication component to the latest version.

Fixes

  • Fixed the issue with REST API documentation browser

  • Fixed the issue with the Quick Access option for the Remote App session enforcing default jump host member asset selection as a credentials type even if the last launch did not include it or included the wrong one.

  • Fixed the issue with listing member assets with only container viewer permissions.

  • Fixed the issue where the Quick Access option could start a member session using the member selected for a previous session when the target asset had no such member.

  • Fixed the issue with the Access report did not correctly handle permissions assigned to non-existent groups.

  • Fixed the issue with Access button is available on the Asset View screen for the assets that do not support access (no protocol defined).

  • Fixed the issue with the secure storage of large configuration data, such as private keys.

  • Fixed the concurrency issues with creating and sending notifications.

  • Fixed the issue that prevented creating a workflow selector for a group that had not previously been used in the tenant.

  • Fixed the issue with applying configuration changes to the run time environment.

  • Improved the Microsoft Entra ID token renewal process to refresh access tokens before they expire.

  • Fixed the issue with refreshing cached cryptographic keys disrupting application functionality.

  • Fixed the issue with refreshing cached Entra Id connection.