Skip to content

2025

Release notes for the July 13, 2025 update

Update Version 4.1.202507111740

New Features

Added the option to import assets from Microsoft Entra ID Service.

Entra ID import option allows to load assets into the asset database from Microsoft Entra ID (former Azure AD) Service while applying intelligent tagging rules to classify the imported assets and to apply microsegmentation policies.

The import function simplifies system adoption by reusing existing network infrastructure and collected data to start system activities.

Added break glass recovery option

The Break Glass option allows to retrieve sensitive data from the tenant backup files even when the server is not running, tenant database or WEB GUI is not accessible, or the original deployment is not available.

For this option to work, tenant administrators need to schedule periodic backup and save tenant break glass key to use in in cases of emergency to access important sensitive data to keep their business running.

Security

  • Updated application WEB container to the latest version.

  • Updated application client side WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated application test framework to the latest version.

  • Updated data processing utility component to the latest version.

Extensions

  • Added full breadcrumb path to the parent container on the asset creation screen.

  • Added the option to sort by Violation column in the connection reports.

  • Added the option for space administrators and space taxonomy managers to add new terms to the currently selected list from the term selection dialogue.

  • Added case-insensitive search support for services on the network service list screen and when selecting services on the policy screen.

  • Added case-insensitive search support for policies on the policies list screen.

  • Added support for case-insensitive search for assets when selecting assets for base, member assets as well as containers for new asset parents.

  • Added support for case-insensitive asset search using search center.

  • Added the option to obtain tenant break glass key that could be used to recover sensitive data or to perform un-managed operations.

  • Added the option to reset password of the deployment administrator in the emergency break glass scenario.

Fixes

  • Fixed the issue with the blanket error message on the browser developer console when displaying Network Flow Chart.

  • Fixed the issue with sorting policies by name on the policies list screen.

  • Fixed the issue with enabling loopback connections when enforcing policies on Linux devices with iptables firewall.

Release notes for the July 6, 2025 update

Update Version 4.1.202507032033

New Features

Added multi-interface assets support on the network flow chart.

The option simplifies asset-centric view of the network by displaying fewer nodes with multiple network interfaces on the network flow chart.

The feature includes the following improvements:

  • Added the option to display asset with several network interfaces in the IP level connectionsflow chart merging the graphical nodes related to different interfaces of the same asset to the same node.

  • Added the option to display several IP addresses to the text popup for the chart node.

  • Added name resolution for the connection nodes inbound to and outbound from the secondary interfaces.

  • Added support for the search of nodes related to multiple interfaces of the same asset.

Added support for script execution on legacy Windows devices.

The option allows to build and to execute scripts on the Windows devices with WS-Management version below 2.3 including Windows 7 and Windows Server 2008 R2.

Security

  • Updated application client side WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated MariaDB driver to the latest version.

  • Updated application Bill of Materials management component to the latest version.

Extensions

  • Added click-able link on the policy name to edit the editable policy on the policy list screen.

  • Unified REST API naming conventions across all functions exposed by the application server.

  • Signed Windows install and update scripts with new code signing certificate.

Fixes

  • Fixed the issue with the blanket error on the browser log console when adding or editing Mail MFA configuration.

  • Fixed the misspelling issue in the API token context help.

  • Fixed the issue with aggregating batch script results in the job log report when aborting the batch.

  • Fixed the issue with displaying page breadcrumbs in full width of the screen.

Release notes for the June 29, 2025 update

Update Version 4.1.202506271557

New Features

Added microsegmentation support for IBM AIX platform.

The support allows to manage services hosted by IBM AIX 7.2 servers in the network microsegmentation policies using native IPsec firewall feature.

The platform support is enabled through the initially hidden IBM AIX Host asset type with pre-configured fields for connection purposes and pre-configured tasks for network monitoring and policy enforcements.

Security

  • Updated application client side WEB framework to the latest version.

  • Updated database access framework to the latest version.

  • Updated database pool component to the latest version.

  • Updated MS SQL Server driver to the last version.

  • Updated application testing framework to the latest version.

Extensions

  • Added pagination, filter by name, type and destination, export to PDF or CSV formats options to the Parsers library to allow management of large number of parsers.

  • Added specific job results error message about failure to retrieve MSA or LAPS passwords from the Active Directory to simplify connection troubleshooting.

  • Added AIX and Solaris component servers to the out of the box LECA Segmentation taxonomy.

  • Unified REST API for script and parser libraries, and for asset types and assets task management.

  • Unified REST API for space and asset permissions management.

Fixes

  • Fixed the issue with breaking the application update on Linux servers when update runs as root for the deployments made by other users.

  • Fixed the issue with the linux update script artifacts when the setup script is updated.

  • Fixed the issue with out of the box taxonomy to not include empty synonyms.

  • Fixed the issue with 0 synonym repeated for both ICMP and all terms in the out of the box taxonomy.

  • Fixed the spelling mistake for traffic directions issue with out of the box taxonomy.

  • Added permit synonym to the firewall action allow in the out of the box taxonomy.

  • Fixed the issue with the context help about API Token description.

  • Fixed the issue with rudimentary Create Type option on the tenant update screen causing issues when selecting wrong update type.

  • Fixed the issue with creating asset import from CSV file.

  • Fixed the issue with preserving delay property for interactive tasks.

  • Fixed the issue with negative values in the task delay property.

Release notes for the June 22, 2025 update

Update Version 4.1.202506202141

Security

  • Updated application client side WEB framework to the latest version.

  • Updated application server side WEB framework to the latest version.

  • Updated structured data processing component to the latest version.

  • Updated logging and log streaming component to the latest version.

  • Updated REST API documentation component to the latest version.

  • Updated context help rendering component to the latest version.

Extensions

  • Added asset level Network Interfaces report accessible from the asset view screen.

  • Added IBM AIX script and parser to monitor network interfaces.

  • Added IBM AIX script and parser to monitor endpoint workloads.

  • Added IBM AIX script and parser to monitor active connections on the endpoint.

  • Added IBM AIX script and parser to monitor network connections on the endpoint using firewall logs.

  • Added IBM AIX scripts to enable and to disable firewall connections logging.

  • Added IBM AIX script and parser to monitor Fireall Rules on the endpoint

  • Added IBM AIX script to add firewall rule to the endpoint.

  • Added IBM AIX script to delete firewall rule from the endpoint.

  • Added the option to parse alternative ports specification for outbound firewall rules.

  • Added support for displaying the generated firewall rule key in the Firewall Rules report.

Fixes

  • Fixed the issue with reading IPv6 addresses what parsing network interfaces.

  • Fixed the issue with detecting connection violations under current policy set for monitoring or published policies for the assets not enforced for microsegmentation.

  • Fixed the issue with the Asset Workloads chart displaying interfaces with no attached workloads.

  • Fixed the issue in REST API name to access asset firewal rules list.

  • Fixed the issue with displaying policy name for the policies that have no descriptions on the asset firewall rules report.

  • Fixed the issue with using gMSA or LAPS accounts when they specified for the Active Directory configuration with the space in the LDAP configuration name.

Release notes for the June 15, 2025 update

Update Version 4.1.202506131931

New Features

Added support for the group Managed Service Accounts (gMSA) when executing scripts on Windows devices.

The group Managed Service Account (gMSA) is a managed domain account that provides automatic password management and the ability to delegate the management to other administrators or services. This minimizes the administrative overhead of a service account by allowing Windows to handle password management for these accounts.

Support for gMSA accounts in Windows Domain environment simplifies management of Windows devices by using fewer domain accounts without the need to manage service account credentials. With gMSA account use no password in microsegmentation asset delegating password management the to Windows Domain.

Added support for LAPS accounts when when executing scripts on Windows devices.

The Local Administrator Password Solution (LAPS) provides management of local account passwords of domain joined computers. This minimizes the administrative overhead of a service account by allowing Windows to handle password management for these accounts.

Support for LAPS accounts in Windows Domain environment simplifies management of Windows devices by avoiding management of the service account credentials. With LAPS account use no password in microsegmentation asset delegating password management to the Windows Domain.

Security

  • Updated application client side WEB framework to the last version.

  • Updated application WEB container to the last version.

  • Updated database access component to the last version.

  • Updated PostgreSQL driver to the last version.

  • Updated REST API documentation component to the last version.

  • Updated WEB application build environment with foundation framework packages to the last version.

  • Updated application test framework to the last version.

Extensions

  • Added IBM AIX script and parser to detect OS information and network status.

Fixes

  • Fixed the issue with detecting explicit parameters during script execution.

Release notes for the June 8, 2025 update

Update Version 4.1.202506061256

New Features

Added Kerberos authentication support to the script execution on remote Windows computers.

As alternative to NTLM authentication in Windows networks, Kerberos is a computer-network authentication protocol that works on the basis of tickets to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

Configuration to enable Kerberos authentication for the group of assets requires additional fields created on the Windows Host based asset type. These additional fields could stay hidden in the asset type thus inherited by all assets of this type or they could be overwritten for an individual asset.

  • Authentication is a Choice field with Basic, NTLM and Kerberos options.

  • KDC is a String field for the Key Distribution Center which is usually a Domain Controller.

  • Realm is the String field for Kerberos realm.

Server, User and Password come from the regular asset configuration. It is recommended to run Kerberos authenticated communications over SSL secure WinRMs transport protocol.

Security

  • Updated application client side WEB framework to the last version

Extensions

  • Added a navigation link to the tenant name in the tenant list screen.

  • Added context help to the labels on the Backup screen.

  • Added authentication type to the Windows script job output that might include Basic, NTLM or Kerberos.

  • Added WEB Framework version information to the About screen.

Fixes

  • Fixed the issue with the order of the system information entries on the about screen to show the license expiration date in the last row.

Release notes for the June 1, 2025 update

Update Version 4.1.202505301903

New Features

Added the option to customize WEB Login screen.

The option allows tenant and space owners to customize the image and prompt message displayed on the WEB login screen replacing vendor branding. Space specific image helps users to visually identify the site they log in to. Custom prompt allows administrators to inform users about site specific events such as maintenance window, site mission, training or documentation references.

Custom WEB login screen configuration is unique for each tenant and space inside the tenant and is inherited down the space hierarchy with the options to restore the default of overwrite the options of the parent space. It provides flexibility for tenant and space owners to manage visuals for all spaces in a single place with the option to overwrite settings for some individual spaces.

Security

  • Updated application client side WEB framework to the major version 20.

  • Updated internal scripting language component to the last version.

  • Updated PostgreSQL driver to the latest version.

  • Updated dashboard charting component to the last version.

  • Updated database connection pool component to the last version.

  • Updated server side test framework to the last version.

Fixes

  • Fixed the issue with detecting action permissions granted to a user group.

  • Fixed the issue with the blanket error message on the browser console when accessing the tenant license screen.

  • Fixed the issue with the dashboard chart displaying assets by type distribution.

Release notes for the May 18, 2025 update

Update Version 4.1.202505232020

New Features

Added support for MariaDB as a back end database

MariaDB is a widely-used, free, and open-source relational database management system. MariaDB is known for its performance, scalability, and security features, making it suitable for a security application as 12Port Platform.

MariaDB support extends previously supported variations of back end databases such as Oracle RDBMS, MS SQL Server, MySQL, PostreSQL in addition to the embedded database managed by the application itself.

Security

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the new series 7 version.

Extensions

  • Added visual indicator for disabled MFA providers on the MFA Rules edit and list screens.

Fixes

  • Fixed the issue with Windows application update when some of the folders or files in the deployment are locked by external processes.

  • Fixed the issue with creating batch and handler scripts during tenant initialization.

  • Fixed the issue with untranslated message on the application welcome screen that appears after login or tenant navigation.

  • Fixed the issue with default values visibility on the first tenant initialization screen during the application deployment.

  • Fixed the issue with displaying default value in the customizer Language selection.

  • Fixed the issue with missing default secret requirements in the base tenants.

  • Fixed the issue with executing Unix scripts using connection with private keys.

  • Updated context help for database selection on the tenant management screen.

Release notes for the May 18, 2025 update

Update Version 4.1.202505161855

New Features

Added MFA requirement option for Service Request and Unlock secure field actions.

The option allows to confirm user identity right before performing critical operations. Supported MFA providers include TOTP (Google Authenticator, MS Authenticator), Yubikey, email, Entra ID (Push with number matching and OTP using MS Authenticator), Duo Security (Push and OTP using Duo Application), and various flows run through RADIUS protocol.

MFA Requirement option allows flexible configuration for group of users and group of assets using Action Request selectors. The specific MFA provider is selected based on the MFA configuration for the users and groups.

With configured MFA Requirement both Service Request and Unlock Secret field actions require MFA confirmation every time during the approved period.

Security

  • Updated application client side WEB framework to the last version.

  • Updated database access component to the last version.

  • Updated REST API documentation framework component to the last version

  • Updated application WEB container to the last version.

Extensions

  • Added support for pagination, filtering and sorting by script type, script role, name and script orchestration as well as export to PDF and CSV to the script library.

  • Added support to translate months names on the GUI to different languages for the date formats that include month name.

  • Added support to verify and establish trust to the SSL host given in the string field starting with ldaps or https on the Asset Edit screen.

  • Added support to display asset types in the scrollable list when creating a new asset to accommodate long asset type lists.

  • Added the option to reference member asset fields in the task scripts using runas_ prefix to distinguish them from the field of the main asset.

  • Added the option to reference asset field names with spaces in the task scripts using underscore (_) character in place of a space.

  • Added keyboard shortcut to save Entra ID configuration.

Fixes

  • Fixed the issue with the tooltip on the button to add asset members.

  • Fixed the issue with collecting script parameter for the run-as account.

  • Fixed the issue with direct authentication with Entra ID provider.

  • Fixed the issue with incorrect rendering month names on the GUI dates.

  • Improved the error logging message about periodic node check in.

  • Improved security of file access on the file system during WinRM calls.

  • Fixed the issue with the excessive number of unnecessary node process registrations.

  • Fixed the issue with creating new Service Request after request approval.

  • Fixed the issue with displaying Jobs report for the assets with no Generic Role tasks.

  • Fixed the issue with parameters that contain no values during script execution.

  • Fixed the issue with the option to review a secret field on the asset history screen.

Release notes for the May 11, 2025 update

Update Version 4.1.202505091857

New Features

Added microsegmentation support for outbound traffic

Microsegmentation of outbound traffic is a useful tool to implement compliance with industry or government requirements in regulated industries as well as to facilitate data leak prevention policies.

Microsegmentation of outbound traffic specifically added the following features:

  • Added the option to specify traffic direction when managing segmentation policy.

  • Added the option to specify traffic direction during creation or management of service requests for ad-hoc policy exceptions.

Security

  • Updated application client side WEB framework to the last version.

  • Updated Oracle RDBMS driver to the last version.

Extensions

  • Improved reliability of identifying Linux firewall rules by cross-tagging the rules on the endpoint with those in the application database.

  • Improved reliability of identifying Windows firewall rules by cross-tagging the rules on the endpoint with those in the application database.

  • Improved logging response from the Windows Firewall Rule Add script.

  • Added firewall logging information to the script execution.

  • Added the option to refresh the list of segmentation policies.