Version 9.1 - Release Notes & Bug Fixes

Password Secure Password Secure Announcements
, ,
1

New Features

Server & Server Manager

  • You can now assign an alias for each database for login purposes, eliminating the need to disclose the real database name.
  • Individual databases can now be set to read-only mode.

Browser extension

  • Based on Manifest V3, a new browser extension for Chrome has been released.
  • The browser extension is now able to fill out OTP fields.

Web App

  • External links created via the web app now contain the database alias if one has been defined.

Extended view (on Windows & web)

  • A new filter group “Directory Service Type” has been added, which allows explicit filtering by users and roles from directory services.

Server

  • The alias of a database is now displayed in the Authenticator app if one is configured, and a new token is generated.
  • The session timeout for new databases is now set to 1 hour instead of the previous 6 hours.

Improvements

Web App

  • It is now possible to define the URL in applications of type Web as a regular expression.

Browser extension

  • The performance of the browser extension has been improved.

Fixed

Advanced view

  • The import of CSV files now handles organizational units correctly.
  • The quick view and history of passwords can be opened again.
  • Spontaneous errors when changing selected passwords have been fixed.
  • Web applications with URLs defined as regex are recognized correctly.
  • Logging in to the Windows app is possible again if you were last logged in in the standard view.

Extended view

  • An external package with a vulnerability classified as weak has been updated. The vulnerability could not be exploited via Netwrix Password Secure (This also affects the server & Server Manager as well as the autofill & offline add-on.).
  • The obsolete property “Spaces” has been removed from the password policies (This also affects the offline add-on.).
  • A possible XSS vulnerability in the WebViewer has been closed (This also affects the web app.).
  • A problem has been fixed where the password was not saved on the server after a change when it was copied to the clipboard.
  • The cross-client login for the browser extension is now also operational for synchronized Windows profiles.

Web App

  • Entra ID tokens can be regenerated in the profile list.

Server Manager

  • The configuration script for the web app under IIS now also works if there are spaces in the target path.
  • The version of the nginx web server is no longer returned in the header in the standard configuration.

Browser extension

  • Web applications with URLs defined as regex are now recognized correctly.

Bug Fixes

See the Netwrix Password Secure v9.1 Bug Fix for a list of bugs fixed in this version.

1 Like