Skip to content

Release Notes

Release notes for the July, 12 2026 update

Update Version 4.1.202607102103

New Features

Added support for Microsoft Graph sessions using native PowerShell clients

Added support for establishing Microsoft Graph sessions from native PowerShell clients, enabling secure, Zero Trust access to Microsoft Graph APIs for managing Microsoft Entra ID, Azure, and Microsoft 365 environments.

The integration supports credential injection, role-based access control (RBAC), access request and approval workflows, session suspension and termination, and session logging for auditing and compliance.

Added Personal Site support for application users

Added support for Personal Sites, allowing application users to securely store and access personal non-shared credentials and other sensitive information in isolated areas of the vault.

Assets stored in Personal Sites integrate with browser extensions to securely fill login forms on web portals. Sensitive information can also be shared using short-lived, secure Safe Links.

Personal Sites promote better security hygiene by providing users with a secure location to store web portal credentials and other sensitive information that falls outside the organization's centrally managed accounts and policies.

Site administrators can explicitly grant users permission to provision and use Personal Sites, enabling organizations to control their deployment and adoption across the enterprise.

Extensions

  • Added descriptive labels to tasks on the asset view screen to distinguish whether each task runs on the main or related asset, and to indicate its trigger type.

  • Added the option for Web HTTP sessions and the browser password autofill extension to use default field names in addition to the field names defined by the asset's page schema by preceding page schema entries with the plus sign (+).

  • Added the option to retrieve the decrypted history of an asset field value from backup during Break Glass access, limited to a specified number of previous values.

  • Added support for Elliptic Curve (EC) public keys when connecting to Windows RDP hosts using native desktop and mobile RDP clients.

Security

Security Improvements
Components Update
  • Updated application WEB framework to the latest version.

  • Updated application WEB container to the latest version.

  • Updated database access component to the latest version.

  • Updated data processor component to the latest version.

  • Updated SSH client, server and proxy components to the latest version.

  • Updated internal scripting component to the latest version.

  • Updated Code Editor view and state components to the latest version.

  • Updated PostgreSQL driver to the latest version.

  • Updated network streaming component to the latest version.

  • Updated Informix driver to the latest version.

  • Updated client side markdown processing component to the latest version.

Fixes

  • Fixed the issue that caused duplicate site roles to be displayed on the current user information card in the login toolbar when accessing sub-sites.

  • Fixed the issue with duplicated AI Manager role on the site roles management screen.

  • Fixed the issue with extra permissions allowed to unprivileged users for certain operations in the vault.

  • Fixed the issue with the Assets by Type dashboard chart displaying assets from the sub-sites.

  • Fixed the issue where server-side errors displayed in the Web Console could cause users to be logged out.

  • Fixed the issue where the Web Session control box remained on the screen longer than necessary after session initialization or after it was no longer in use.

  • Fixed the issue where Web HTTP sessions and the browser password autofill extension continued to use default field names in addition to the field names defined by the asset's page schema.

  • Fixed the issue with displaying the list of backups with incomplete or broken individual backups.

Release notes for the July, 5 2026 update

Update Version 4.1.202607021637

New Features

Added on-demand data synchronization between replication nodes

Added an on-demand replication synchronization process to synchronize new and updated data between replication nodes.

Unlike real-time replication, which transfers changes as they occur, replication synchronization scans for changes made during a configurable time period and synchronizes them between connected nodes. This makes it easy to recover updates that may have been missed while real-time replication was unavailable, such as during maintenance or network interruptions.

Replication synchronization is also useful for periodically synchronizing Disaster Recovery (DR) environments without maintaining continuous real-time replication, reducing unnecessary network traffic while ensuring data remains up to date when needed.

Extensions

  • Improved the performance of paginated data retrieval from the Microsoft Entra ID REST API.

  • Added the option to verify connectivity and establish trust with cloud AI providers directly from the integration list and edit screens.

  • Added the option to regenerate HTTP proxy certificate from the WEB Console GUI.

  • Improved Active Directory integration by enforcing the requirement to use service accounts in User Principal Name (UPN) format.

Security

Security Improvements
  • Updated code signatures for Windows installers.

  • Improved the security of Microsoft Entra ID token caching by preventing tokens generated for the same applications from being shared across different tenants or sites.

  • Improved communication security with Microsoft Entra ID to strengthen authentication and API interactions.

  • Added support for FIPS-compliant certificate storage for Microsoft Entra ID and OpenAI communications.

  • Added connection timeouts for Microsoft Entra ID communications to improve reliability during network connectivity issues and reduce the risk of denial-of-service (DoS) conditions.

Components Update
  • Updated application WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated Code Editor view components to the latest version.

  • Updated test framework to the latest version.

  • Updated WEB application icons library to the latest version.

  • Updated PostgreSQL driver to the latest version.

  • Updated HTTP communication component to the latest version.

  • Updated SSH and PowerShell proxy sessions player component to the latest version.

  • Updated terminal emulator component to the latest version.

  • Updated WEB HTTP Driver to the latest version.

  • Updated application logger component to the latest version.

Fixes

  • Fixed an issue with resolving the dynamic issuer for the certificates, tokens and signatures to the site URL when the configured issuer contained leading or trailing whitespace.

  • Fixed the issue with deleting the asset that has associated failed password reset jobs.

  • Fixed the issue that allowed the deletion of local users and groups that were still in use by asset or container permissions, workflow approvers, or workflow selectors.

Release notes for the June, 28 2026 update

Update Version 4.1.202606261936

New Features

Added support for key-based authentication to Microsoft Entra ID applications

Key-based authentication improves security when integrating with Microsoft Entra ID applications:

  • Private keys never leave the client. Instead of transmitting a shared secret over the network, the client signs a time-stamped authentication assertion with its private key. Microsoft Entra ID validates the signature using the corresponding public certificate.

  • Independent credential management. Each client can use its own certificate and private key, making it easy to grant, revoke, and rotate credentials for individual clients without impacting other applications or integrations.

Key-based authentication is supported across a wide range of Microsoft Entra ID integration scenarios, including:

  • Authentication: Direct and single sign-on (SSO) user authentication
  • Authorization: User and group authorization, including permission assignment, revocation and reporting
  • Multi-Factor Authentication (MFA): Verifying user identity before granting access to remote sessions or sensitive data.
  • Import: Importing virtual machines and accounts into the application vault
  • Account Management: Password reset, reconciliation and verification for Microsoft Entra ID accounts
  • Azure AI: Integrating with Azure AI services to analyze and query application data.
  • Notifications: Sending email through Microsoft 365

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated WEB container component to the latest version.

  • Updated REST API documentation component to the latest version.

  • Updated markdown rendering toolkit to the latest version.

  • Updated database access component to the latest version.

  • Updated SSH and PowerShell Proxy sessions player component to the latest version.

  • Updated dashboard charts component to the latest version.

  • Updated Code Editor command, view, language and state components to the latest version.

  • Updated HTTP communication component to the latest version.

Fixes

  • Fixed the issue with REST API documentation browser

  • Fixed the issue with the Quick Access option for the Remote App session enforcing default jump host member asset selection as a credentials type even if the last launch did not include it or included the wrong one.

  • Fixed the issue with listing member assets with only container viewer permissions.

  • Fixed the issue where the Quick Access option could start a member session using the member selected for a previous session when the target asset had no such member.

  • Fixed the issue with the Access report did not correctly handle permissions assigned to non-existent groups.

  • Fixed the issue with Access button is available on the Asset View screen for the assets that do not support access (no protocol defined).

  • Fixed the issue with the secure storage of large configuration data, such as private keys.

  • Fixed the concurrency issues with creating and sending notifications.

  • Fixed the issue that prevented creating a workflow selector for a group that had not previously been used in the tenant.

  • Fixed the issue with applying configuration changes to the run time environment.

  • Improved the Microsoft Entra ID token renewal process to refresh access tokens before they expire.

  • Fixed the issue with refreshing cached cryptographic keys disrupting application functionality.

  • Fixed the issue with refreshing cached Entra Id connection.

Release notes for the June, 21 2026 update

Update Version 4.1.202606191213

New Features

Added the option to import accounts from Microsoft Entra ID

Added the ability to import accounts from Microsoft Entra ID, formerly Azure AD, into the asset database.

The import process can apply account policies, such as password reconciliation, to newly imported accounts. This simplifies adoption by reusing existing directory data and infrastructure to start managing accounts in the system.

Extensions

  • Improved RDP session performance for connections established through native desktop and mobile RDP clients when video recording is enabled.

  • Improved the request action time selection experience by allowing users to choose a duration in hours, days, or weeks, based on the selected workflow form configuration, while still supporting direct start and end time entry.

  • Added support for multi-line banners on the login screen.

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated data binding component to the latest major version 3.x.

  • Updated MariaDB driver to the latest version.

  • Updated native code execution toolkit to the latest version.

  • Updated client side sanitation component to the latest version.

  • Updated terminal emulator component to the latest version.

Fixes

  • Fixed the issue with exiting application command line utility after backup operations.

  • Fixed the issue where the Save button on the action request form was enabled only after the user left the Reason field.

  • Fixed the issue where the Save button on the asset editing screen was enabled only after the user left the Asset Name field.

  • Fixed the issue where the Save button on the new tenant creation or editing screen was enabled only after the user left the Tenant Name field.

  • Fixed the issue that allowed saving an asset without a name after modifying other fields on the asset edit screen.

  • Fixed the issue with excessive volume of content written to the system log for the RDP Proxy connection resets events.

  • Fixed the issue with deleting an asset with the associated workflow selectors.

  • Fixed the issue with the error displayed when unlocking empty secret field.

  • Removed the Windows Password Reset by Account Itself and Windows Password Set by Shadow Account scripts from the default Windows Host asset type in favor of password reconciliation scripts.

Release notes for the June, 14 2026 update

Update Version 4.1.202606121824

Extensions

  • Added events recording support (including keyboard, mouse and cursor shape changing events) for the RDP sessions established from the latest native desktop RDP clients to the latest RDP servers, including Windows 11 24H2+ and Windows Server 2025.

  • Added support for RDP sessions established from the latest version of Mac OS Windows App RDP client.

  • Changed default action request completion time to 12 hours from the request start.

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated GUI translation component to the latest major version 18.

  • Updated GUI icons repository to the latest version.

  • Updated database access component to the latest version.

  • Updated database connection pool component to the latest version.

  • Updated code editor view component to the latest version.

  • Updated client side sanitation component to the latest version.

  • Removed redundant 3rd party dependencies from the application WEB console.

  • Updated REST API Documentation component to the latest version.

  • Updated dashboard charts component to the latest version.

Fixes

  • Fixed the issue with Session Events report run by a user without site permissions.

  • Fixed the issue with downloading non-secured file field value from the asset view screen.

  • Improved platform resilience and reliability under heavy traffic conditions.

  • Improved Asset List and Asset View GUI screens responsiveness and performance.

  • Fixed the issue with availability of Video Manager on the GUI for the sessions that do not support recording conversion to video such as the sessions established using native SSH and PowerShell clients.

  • Fixed the issue with excessive volume of content written to the system log for the invalid RDP Proxy authentication events and for the events accessing non-existing site.

  • Fixed the issue with displaying connection time error messages from the endpoint in the sessions established using native desktop or mobile RDP clients.

  • Fixed the issue with initial sorting of access profiles, command filters, session intelligence configurations, taxonomy lists on search center, tagging configuration, and providers list on the AT Integrations.

  • Fixed the issue with calculating request end time on the request action form.

Release notes for the June, 7 2026 update

Update Version 4.1.202606051817

New Features

Added scriptable WEB Portal access through an RDS jump host

Added support for scriptable web portal access using a generic RDS RemoteApp that drives Microsoft Edge through a script selected in the asset configuration. The script can navigate HTML fields and type asset field values into selected or currently focused form elements.

This option enables zero trust web portal access with credential injection and full session recording through a secured Remote Desktop Services (RDS) jump host.

It complements the existing zero trust web portal access methods: Browser Extension and Web HTTP Sessions. For details about the benefits, advantages, and trade-offs of each method, see: https://docs.12port.com/introduction/faq/web-portal-access/

Extensions

  • Added support for zero trust connections from the latest native desktop RDP clients to the latest RDP servers, including Windows 11 24H2+ and Windows Server 2025.

  • Added an asset audit report for site administrators to view asset configuration, security settings, and access options as seen by a selected user, helping build consistent security policies and troubleshoot asset access issues.

  • Added the option to customize Page Schema for web portal access using the Browser Plugin or Web HTTP Sessions, allowing asset owners to define the fields used for entering user and password values.

  • Added secondary node support to service status reporting, allowing load balancers to keep traffic on the main node while it remains operational.

  • Added latest models to AI Integration.

Security

Components Update
  • Updated server side Run Time framework to the latest version.

  • Updated application WEB framework to the latest major version 22.

  • Updated network streaming component to the latest version.

  • Updated Native Platform Access component to the latest version.

  • Updated GUI icons repository to the latest version.

  • Updated client side sanitation component to the latest version.

  • Updated database connection pool component to the latest version.

  • Updated client side markdown toolkit to the latest version.

  • Updated dashboard charts component to the latest version.

Fixes

  • Fixed the issue with displaying session events in the WEB Session recording player.

  • Fixed the issue with terminating failed policy application jobs for newly created assets.

  • Fixed the issue with establishing RDP Proxy connections, completing deferred sessions, applying policies and deleting assets in the sub-sites.

  • Fixed the error reporting issue with the RDP Proxy connections for the non-existing assets.

  • Fixed the issue with duplicated backup names in the selection box when creating new tenants from backup.

Release notes for the May, 31 2026 update

Update Version 4.1.202605291345

New Features

Added Data Replication Between Application Nodes

The replication component maintains a journal of data changes, including create, update, and delete operations for configuration, management, and log data. The replication process then synchronizes these changes with configured peer nodes through the application REST API.

Node-to-node data replication supports advanced deployment scenarios, including:

  • Disaster Recovery (DR) — A backup node can be used when the Main node is unavailable and later synchronize the data collected during the outage back to the Main node.

  • Active Multi-Site — Two active Main nodes can serve endpoints in different regions or locations, such as isolated cloud virtual networks or disconnected datacenters, while sharing configuration, security policies, and audit data.

  • Autonomous Peer — A Peer node can be deployed in an isolated virtual private network or datacenter to access endpoints that are not directly reachable from the Main node. The Autonomous Peer can continue operating when connectivity between the Peer and Main nodes is unavailable or low quality.

  • Session Relay — Session performance can be improved by keeping session traffic local when the asset, user, and Peer node are in the same network, avoiding unnecessary routing through the Main node.

Extensions

  • Added the option to specify timeout parameters for AWS Console remote app.

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated terminal emulator component to the latest version.

  • Updated XML Mapping toolkit to the latest version.

  • Updated data binding component to the latest version.

  • Updated SSH server, client and proxy component to the latest version.

  • Updated SSH keys handling toolkit to the latest version.

  • Updated client side data sanitation component to the latest version.

  • Updated code audit component to the latest version.

Fixes

  • Fixed the issue with reduced screen size for WEB Sessions.

  • Fixed the issue with switching container to the selected non-container asset in the SSH command line shell.

  • Fixed the issue with translated error messages in the switch container operation of the SSH command line shell.

  • Fixed the issue with the real time permission verification when switching containers in the SSH command line shell.

Release notes for the May, 24 2026 update

Update Version 4.1.202605221614

New Features

Added Dark Mode Support to the WEB Console GUI

Dark mode improves usability in low-light environments, such as control rooms, overnight operations, shared workspaces, and after-hours administrative sessions. It helps reduce screen glare, lowers visual fatigue during extended use, and provides a more comfortable experience for operators who monitor or manage the WEB Console for long periods.

Added the option to provide endpoint credentials in native SSH clients.

Users can now initiate connections to remote Unix or Network Device endpoints from desktop or mobile SSH clients by providing endpoint credentials directly, while access remains securely mediated through the connection broker.

This feature enforces RBAC policies, approval workflows, and session monitoring with video and event recording, enabling secure, identity-based session management without requiring automated credential management.

This option complements the existing endpoint credential option available for WEB SSH clients.

Extensions

  • Added the option for asset managers to override credentials stored in the assets when connecting to the Windows endpoints using native desktop RDP clients.

  • Added a visual indicator in the assets list to identify assets that were recently created or updated.

  • Added an error message for Remote App connections through a jump host when the selected asset does not include the RDS jump host as a member.

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated WEB HTTP Sessions driver to the latest version.

  • Updated Informix driver to the latest version.

  • Updated dashboard chart component to the latest version.

  • Updated terminal emulator component to the latest version.

  • Updated client side data sanitation component to the latest version.

  • Updated client side markdown toolkit to the latest version.

  • Updated bill of materials monitoring component to the latest version.

  • Updated code audit component to the latest version.

  • Updated unit test toolkit to the latest version.

Fixes

  • Fixed the issue with accessing asset number fields with no defined values.

  • Changed the log level of the application trust manager initialization event to debug from information one.

  • Fixed the issue with creating new tenants from backup

  • Fixed the issue with restoring asset type container property.

  • Added debug logging for the WEB Sessions parameters to troubleshoot remote sessions.

  • Added debug mode for the AWS Console RDS jump host application to display received parameters to troubleshoot the remote application launcher.

  • Fixed an issue with error reporting for failed remote endpoint connections using native SSH clients.

Release notes for the May, 17 2026 update

Update Version 4.1.202605151622

New Features

Added the option to provide endpoint credentials in native RDP clients.

Users can now initiate connections to remote Windows endpoints from desktop or mobile RDP clients by providing endpoint credentials directly, while access remains securely mediated through the connection broker.

This feature enforces RBAC policies, approval workflows, and session monitoring with video and event recording, enabling secure, identity-based session management without requiring automated credential management.

This option complements the existing endpoint credential option available for WEB RDP clients.

Extensions

  • Added links to the release notes and to the application update guide to the home page message about the application update.

  • Added support to initialize deployment or to create a new tenant in the deployments that run inside containers such as Docker to remove the option to select embedded database as a backend storage.

  • Added the option to click on the site name in the site list to navigate to this site.

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated code audit component to the latest version.

  • Updated REST API documentation component to the latest version.

  • Updated client side data sanitation component to the latest version.

  • Updated logging API component to the latest version.

  • Updated Oracle RDBMS driver to the latest version.

  • Updated code editor legacy modes and view components to the latest version.

  • Updated dashboard chart component to the latest version.

Fixes

  • Fixed the issue with WEB HTTP sessions blurry remote screen visible on certain displays.

  • Fixed the issue with displaying user name when editing the form with the directory user of group selection control.

  • Fixed the issue with the process name for auto restore on the node processes screen.

  • Fixed the issue with adding previously deleted user to the tenant security scheme either by granting permissions directly, through a group, or by adding the user as a group member.

  • Fixed the issue with duplicated certificates reported in the certificate chain during trust verification process.

  • Fixed the issue with loading logger configuration.

  • Fixed the issue with redundant restore of the backup configuration at the end of restoring process in case there was no backups to restore.

Release notes for the May, 10 2026 update

Update Version 4.1.202605082044

New Features

Added support for configuring cryptographic settings for inbound SSH connections.

Enhanced SSH proxy security and interoperability by enabling configuration of supported cryptographic algorithms for inbound SSH connections made by native desktop or mobile SSH clients. This provides greater control over security policies and compatibility with enterprise SSH environments, including support for configuring:

  • Accepted Key Exchange (KEX) algorithms
  • Supported cipher algorithms
  • Supported MAC (Message Authentication Code) algorithms
Added configuration options for Web RDP session performance tuning

Introduced advanced performance settings for Web RDP sessions, allowing administrators to fine-tune the balance between usability, visual experience, compatibility, and bandwidth optimization.

These enhancements provide greater flexibility for optimizing Web RDP sessions across different network conditions and endpoint capabilities.

Supported configuration options include (with default values):

  • Color Depth (24)
  • DPI (default)
  • Enable Wallpaper (off)
  • Enable Theming (off)
  • Enable Font Smoothing (on)
  • Enable Full Window Drag (off)
  • Enable Desktop Composition (off)
  • Enable Menu Animations (off)
  • Disable Bitmap Caching (off)
  • Disable Offscreen Caching (off)
  • Disable Glyph Caching (on)
  • Disable GFX (off)
  • Force Lossless (off)

Extensions

  • Added the option to copy session URL to the clipboard from the WEB session launcher dialogue to automate direct access to the WEB session.

  • Added support to set password for non-root privileged user (non-root user with zero id) to "Unix Password Reset by Account Itself" script.

  • Added enhanced error feedback for Web Sessions to surface server-side issues, including connection failures, permission-related errors, and workflow block messages.

Security

Components Update
  • Updated application WEB framework to the latest version.

  • Updated database access component to the latest version.

  • Updated IP Address toolkit to the latest version.

  • Updated client side code auditing tool to the latest version.

  • Updated network streaming component to the latest version.

  • Updated terminal emulator component to the latest version.

  • Updated data binding component to the latest version.

  • Updated code editor view component to the latest version.

  • Updated server side logging framework to the latest version.

  • Updated internal scripting language component to the latest version.

  • Updated dashboard chart component to the latest version.

Fixes

  • Fixed the issue with access to policy preview dialogue.

  • Fixed the issue with access to the asset policy preview dialogue.

  • Fixed the issue with displaying service selection list on the service selector control in various parts of the application such as service request form or policy editing.

  • Fixed the issue with displaying term selection list on the term selector control in various parts of the application such as policy or tagging rules editing.

  • Fixed the issue with the mass un-tagging screen to allow operation to complete.

  • Fixed the issue with the client side activation action is enabled when there is no activation code provided.

  • Fixed the issue with confirmation messages about the policy actions on the policies list screen should reference the policy name instead of description.