Passwordstate Changelog

Passwordstate Changelog

Thanks to all our fantastic customers for spotting all those embarrassing bugs, and for suggesting the features which has made Passwordstate the product it is today.

Please see a list of changes and bug fixes for Passwordstate below, and please keep those suggestions coming.

For instructions in upgrading, please visit our News & Announcements support forum.

Passwordstate 5.3 Build 5302 (17th January 2012)

Fixed - A deletion of a Password List was not being reported on the screen Administration -> Auditing (Ref 53.01)
Fixed - "Server Error in '/' Application" error when accessing the Emergency Access feature - caused by the option to hide the 'Auditing' tab from users (Ref 53.02)

Passwordstate 5.3 Build 5300 (21st December 2011)

New - We've introduced a new feature called Emergency Access. This access is only meant to be used when other forms of user authentication are not possible i.e. AD is unavailable, or users are unavailable (Ref 52.11)
New - Recycle Bin for deleted passwords. You can now restore deleted passwords from the recycled bin if required (Ref 52.12)
New - You can now specify which users (all, none, individuals or security groups members) can create Password Lists, Password Folders, Administer Password List Templates, or request access to passwords (Ref 52.13)
New - Provided the feature whereby you can link passwords copying them between Password Lists - all details are synchronized between Password Lists (Ref 52.14)
New - Multiple Password Generator options are now possible allowing you to assign each Password Generator to different Password Lists (Ref 52.15)
New - User can now choose exactly which email notifications they would like to receive or suppress (Ref 52.16)
New - You can now synchronize the enabled/disabled status of an Active Directory account in Passwordstate (Ref 52.17)
New - When an Active Directory account is deleted, you can now either choose to delete, disable or ignore the matching user account in Passwordstate (Ref 52.18)
New - Modify permissions for Password Lists now has the following options - Add, Edit or Delete passwords (Ref 52.19)
New - When users has 'Guest' access to a Password List, you can now choose to allow them to also create new password records (Ref 52.20)
New - You can now choose to receive a Daily Audit Report via email showing the past days activities for the Password Lists you have access to (Ref 52.21)
New - Provided the option to disable the feature which allows you to purge all auditing records (Ref 52.22)
New - Provided option to View or Email another user a direct link to a Password record (Ref 52.23)
Update - Updated the automatic time-out popup to use a blank background page to prevent gaining access to password records using tools such as Firebug or Chrome's Developer Tools (Ref 52.24)
Update - Clicking the Password List Guide icon now opens the Guide in a separate window for easier viewing (Ref 52.25)
Update - When specifying the initial database connection settings, you must now click on the 'Test Connection' button before proceeding (Ref 52.26)
Update - Updated the page which identifies issues when querying for new builds of Passwordstate - better description and you can specify proxy settings on this page (Ref 52.27)
Update - Updated to the latest version of .NET Ajax Controls (Ref 52.28)
Update - Provided descriptions for what each of the Email Templates are intended for (Ref 52.29)
Update - Provided options to enable or disable all Email Templates (Ref 52.30)
Update - Updated Installer to check for web server prerequisites prior to performing the installation (ref 52.31)
Fixed - The inactivity timeout was not being reset when users click to view or copy a password to the clipboard (Ref 52.32)
Fixed - Fixed error of DBNull conversion error when copying passwords between Password Lists (Ref 52.33)
Fixed - When the Passwordstate Windows Service was sending the Expiring Passwords Email report, it was registering an error if the user did not have an associated email address (Ref 52.34)
Fixed - Auditing function for general users was not filtering records correctly (Ref 52.35)
Fixed - View Security Group Membership Graphic not showing properly on 'Add from AD' screen (Ref 52.36)
Fixed - Using Chrome, the Grid on the User Accounts page was expanded horizontally beyond the page width (Ref 52.37)
Fixed - Importing AD Accounts with a blank surname caused 'Conversion from type DBNull to type String is not valid' when adding the account as a Security Administrator (Ref 52.38)
Fixed - Popup message when saving changes to a Password Folder was incorrect (Ref 52.39)
Fixed - When Passwords where exported as part of the 'Bulk Update' process, Security Administrators where not being alerted via an email (Ref 52.40)
Fixed - Audit events for enabling an Email Template was not reflected properly (Ref 52.41)
Fixed - When adding a new password record, the password values can be cleared from the textbox if you change the Account Type image after entering the password (Ref 52.42)
Fixed - When searching from the Passwords Home page, not all records were being returned if multiple permissions where applied to the same Password List (52.43)

Passwordstate 5.2 Build 5210 (30th October 2011)

Updated - Made further changes to the Passwordstate Windows Service to mitigate against Security Groups being removed from Passwordstate if an error was experienced querying Active Directory (Ref 52.04)
Updated - Made further improvements for detection of Active Directory settings during the initial setup of Passwordstate (Ref 52.05)
Fixed - When the authentication option for manually specifying your Active Directory username and password was chosen, it was not authenticating against secondary trusted domains (Ref 52.06)
Fixed - 'String or binary data would be truncated' error was received when trying to save the number of grid rows in the screen Administration -> Password Folders -> View Folder Permissions (Ref 52.07)
Fixed - Scrollbars were showing on the add/edit pages for Password Strength Policies when they didn't need to be (Ref 52.08)
Fixed - Reintroduce several bugs previously found in the Passwordstate Windows Service (Ref 52.09)
Fixed - Previously you were able to enter 0 for the field 'Preferred Length' field for a Password Strength Policy. This was causing an error regarding 'too large or too small for a Decimal' when viewing the Password List (Ref 52.10)

Passwordstate 5.2 Build 5203 (22nd October 2011)

Fixed - Conversion error was experienced when trying to copy password records between Password Lists when the record did not have a document attachment (Ref 52.01)
Fixed - Initial setup procedure was executed again after updating license information from the page Administration -> User Accounts (Ref 52.02)
Fixed - When columns are added/deleted from a Password List, the changes are now shown immediately in the grid view for all users - this was not always the case previously(Ref 52.03)

Passwordstate 5.2 Build 5200 (3rd October 2011)

New - Passwordstate now supports Region Settings (Locales) for individual user accounts which are in different time-zones (Ref 51.38)
New - You can now upload documents and attached them to individual Password records (Ref 51.39)
New - You can now have multiple Password Strength Policies, and apply them to different Password Lists (Ref 51.40)
New - You can now hide the Auditing tab from users if required (Ref 51.41)
New - Multiple options are now available for automatically hiding visible passwords - a set time period, or variable time periods based on password complexity or length (Ref 51.42)
New - Security Administrators can now be alerted via email if users export passwords to a csv file (Ref 51.43)
New - Provided option to hide the Recent Activity Grid from all users based on their permission to the relevant Password List (Ref 51.44)
New - On the main Passwords page, you can now choose to display the Actions Toolbar (Add Password, Import Passwords, List Administrator Actions, etc) at either the top, bottom or top & bottom of the Passwords Grid (Ref 51.45)
New - You now have the ability to administer Password Folders from the Administration area of Passwordstate (Ref 51.46)
New - Security Administrators can now choose to make the ScramblePad Authentication option mandatory for individual user accounts (Ref 51.47)
Update - You can enable/disable the following options - Create Shared & Private Password Lists, as well as Password Folders (Ref 51.48)
Update - You can now decline a Handshake Approval without the second approver being online (ref 51.49)
Update - Improved Email Template Editor and provided help and functionality for inserting various Variables (ref 51.50)
Update - Security Administrators can now specify most User Preferences for them within the Administration -> User Accounts area (Ref 51.51)
Update - Updated to the latest version of ASP.NET Ajax components (Ref 51.52)
Update - Now show progress animated graphic when navigating between pages in Grids (Ref 51.53)
Update - The Passwordstate web site now has it's own dedicated Application Pool in IIS (Ref 51.54)
Fixed - Dramatically improved the performance of query large Password Lists which had duplicate permissions applied for users or security groups (Ref 51.55)
Fixed - On occasion, some 'action' drop-down menus within Grids was not being displayed correctly (Ref 51.56)
Fixed - Fixed issue where the 'star' Password Strength indicator graphic would remain on a fixed position on the screen when the page was scrolled (Ref 51.57)
Fixed - Fixed issue with Internet Explorer browser where Password List navigation tree was not being automatically updated when a new Password List or Folders were added (Ref 51.58)
Fixed - Fixed scrollbars not appearing on some pages when using small screen resolutions (Ref 51.59)
Fixed - System.Threading.Thread.AbortInternal() error when apply permissions for a Security Group which had no members belonging to it (Ref 51.60)
Fixed - When viewing some Permission 'Access Notes', error Conversion from type 'DBNull' to type 'String' is not valid was experienced (Ref 51.61)
Fixed - The Passwordstate Windows Service was unable to read the database connection string in the web.config file is the connection string was encrypted. It can now successfully decrypt the connection string (Ref 51.62)
Fixed - Clicking on a visible Password in the grid view was not immediately hiding it (Ref 51.63)

Passwordstate 5.1 Build 5137 (20th August 2011)

Fixed - Incorrect user session after log out/in with different accounts when using the option specify AD domain credentials manually (Ref 51.29)
Fixed - JPG Images not showing when adding/editing new Password Lists, or password records (Ref 51.30)
Fixed - Automatic session timeout not working when using the manual Active Directory authentication method (Ref 51.31)
Fixed - Made improvements to prevent NULL fields being added to Auditing table as audit events coincide with session timeouts (Ref 51.32)
Fixed - Number of images in images/LookupImages folder does not match the number of records in the AccountTypes table (Ref 51.33)
Fixed - Issue with Chrome browser where Password List navigation tree was not being automatically updated when a new folder was added (Ref 51.34)
Fixed - Added scrollbars to initial setup pages for use on lower resolution screens (Ref 51.35)
Fixed - Occasionally users were not given access to Password Folders when Password Lists were dragged into them (Ref 51.36)
Update - During the intial setup, you are now given the opportunity to review/change your Active Directory Domain details if required (Ref 51.37)

Passwordstate 5.1 Build 5128 (9th August 2011)

Fixed - Corrected spelling mistake when hovering over notification of new build being available (Ref 51.22)
Fixed - Emails were not being sent from the Passwordstate Windows Service if account authentication details were set to NULL in the database (Ref 51.23)
Fixed - Remove AuditID column value when exporting audit records to a csv file (Ref 51.24)
Fixed - Fixed 'Conversion from type DBNull to type String is not valid' error when querying audit records if the user's first name or surname was set to NULL in the database (Ref 51.25)
Update - Provided further debug information for Passwordstate Service when writing to the application event log (Ref 51.26)
Update - Updated to the latest version of ASP.NET Ajax components (Ref 51.27)
Update - Made modifications to the Passwordstate Windows Service when quering Active Directory Security Groups - on occasion, some Security Groups were being removed if AD could not be queried (Ref 51.28)

Passwordstate 5.1 Build 5121 (16th July 2011)

Fixed - Importing CSV files now correctly imports Unicode characters (Ref 51.19)
Fixed - Fixed horizontal scrollbar being missing on normal Passwords page for small screen resolutions (Ref 51.20)
Fixed - Fixed a type for requesting access to Passwords in the 'Select an Action' dropdown list (Ref 51.21)

Passwordstate 5.1 Build 5118 (12th July 2011)

New - Provided the option to prevent exporting Passwords for Private Password Lists (Ref 51.17)
Fixed - Generating the 'Export Password Strength Report' for Private Password Lists was not returning any results (Ref 51.18)

Passwordstate 5.1 Build 5116 (10th July 2011)

Fixed - Provided an option to specify the use of a proxy server when Passwordstate queries the Click Studios web site for new updates. This was causing initial load delays for organizations who do not support direct Internet access (Ref 51.16)

Passwordstate 5.1 Build 5115 (9th July 2011)

Fixed - Fixed spelling errors in guided tour (Ref 51.12)
Fixed - Fixed an upgrade problem from Version 4.5 whereby the visibility of Password grid columns was not being saved (Ref 51.13)
Update - Relabelled 'Import from AD' button for user accounts to 'Add from AD', so it is more obvious you are not imported all AD accounts (Ref 51.14)
Update - Made modifications to Bad Password reporting to improve performance of Password Lists with a large number of records (Ref 51.15)

Passwordstate 5.1 Build 5111 (5th July 2011)

Fixed - Fixed problem where Annual Support license key would not register correctly when using version 5.1 of Passwordstate (Ref 51.11)

Passwordstate 5.1 Build 5110 (4th July 2011)

New - Added the option whereby new users to Passwordstate are asked if they wish to take a tour highlighting the key features (Ref 51.06)
New - Added the option whereby Security Administrators can automatically be granted Admin access to all new Shared Password Lists as they are created (Ref 51.07)
Update - Added some database indexes to improve database query performance (Ref 51.08)
Update - All ViewState is now compressed on all pages for better performance (Ref 51.09)
Update - Added additional tips to the Guided Tour feature (Ref 51.10)

Passwordstate 5.1 Build 5105 (1st July 2011)

Fixed - Hiding the Statistics chart on the default Password Home Page was causing the page not to load (Ref 51.05)

Passwordstate 5.1 Build 5104 (28th June 2011)

Fixed - If newly created Password Lists was dragged underneath a parent Password List or Folder, the parent Password List/Folder would be moved to the root of the Password navigation tree (Ref 51.03)
Fixed - The 'Confirm Password' textbox when adding/editing Passwords in Chrome/Firefox was right aligned (Ref 51.04)

Passwordstate 5.1 Build 5102 (27th June 2011)

Update - Improved the way Password Folders are share with other users. If a Password List is dropped into a deeply nested Password Folder, permissions will be applied to all the folders up the navigation tree now, instead of just the immediate parent node (Ref 51.01)
Update - Provide the option whereby the Security Administrators can specify what a users ScramblePad Pin number is, instead of just creating a random one (Ref 51.02)

Passwordstate 5.1 Build 5100 (26th June 2011)

New - Password Lists can now be organised within folders (Ref 50.33)
New - The navigation tree structure for Password Lists is now shared with all users who have access to the Password Lists (Ref 50.34)
New - The notes field for passwords is now searchable across all screens (Ref 50.35)
New - Added an option to add one password after another, instead of returning back to the Passwords screen every time you add a new password (Ref 50.36)
New - Added an option which allows restricting of searching for users (when applying permissions) to only users who are in the same Security Groups as the person granting the access (Ref 50.37)
New - Provided 3 authentication options when using Integrated AD Authentication (Ref 50.38):

Pass through authentication from your web browser to Passwordstate (does not require use to type user name & password)

Require users to enter user name & password after they have manually, or been automatically, logged out of Passwordstate

Require users to enter user name & password every time they wish to use Passwordstate - including after they have been logged out

New - Added option whereby Security Administrators can be alerted to failed login attempts into Passwordstate (Ref 50.39)
New - Added the concept of 'Bad Passwords', whereby users are informed a password they are trying to add/edit is deemed to be bad - and the appropriate strength indicator is shown (Ref 50.40)
New - Added two new options to the Password Generator - 1. Insert Word Phrases randomly into Alphanumeric passwords, and 2. Provide 'No Separation' option between Word Phrases (Ref 50.41)
New - Added the option for the Password Generator to ensure passwords meet a minimum password complexity (Ref 50.42)
New - Added 'Access Notes' for when granting permission to passwords, so reasons can be journaled if required (Ref 50.43)
New - Optional timer for automatically hiding passwords when a user views them in the password grid view (Ref 50.44)
New - Optional timer for automatically clearing the clipboard after passwords have been copied to it (Chrome and Firefox users are presented with a button they must click on the clear the clipboard) (Ref 50.45)
New - Added the option for Security Administrators to enforce the same Password Generator options for all users (Ref 50.46)
New - Added the ability to create templates for Password Lists, where preferred options can be reused when creating new Password Lists (Ref 50.47)
New - When creating a new Password List, you can now base all the settings on an existing Password List, as well as copy the permissions if required (Ref 50.48)
New - Within the 'Screen Options' for Password Lists, you can now choose to apply the visibility of columns to the current Password List, selected Password Lists, or all Password Lists (Ref 50.49)
New - On the 'Passwords Home' page, we've added the option where you can choose which columns are visible for the 'Search Results' and 'Favorite Passwords' (Ref 50.50)
New - On the 'Passwords Home' page, you can now hide 'Favorite Passwords' if you do not wish to see them (Ref 50.51)
New - Provided the option whereby users can request access to Password Lists or individual passwords (actual passwords are not displayed). Either of these options can be enabled or disabled (Ref 50.52)
Update - Update to the most recent version of ASP.NET Ajax Controls (Ref 50.53)
Update - When scrolling down the page and clicking on the 'Copy to Clipboard' graphic, no longer are you returned to the top of the page - scrolling position isn't affected (Ref 50.54)
Fix - User's were able to save the expand/collapse state for the Password List navigation tree nodes when using the High Availability module (Ref 50.55)
Fix - When exporting Passwords from the 'List Administrator Actions' dropdown list, removed the Favorite Password indicator column (Ref 50.56)
Fix - If the 'Description' field for a password record had double quotes in it, an audit record was not being added when a user copied the password to the clipboard (Ref 50.57)

Passwordstate 5.0 Build 5032 (13th June 2011)

Fix - Could not create a new Password List from the general user area of Passwordstate (introduce in build 5031) - clicking on the 'Save' button gave no response (Ref 50.32)

Passwordstate 5.0 Build 5031 (7th June 2011)

Fix - Could not create a new Password List from the Administration -> Password Lists area - clicking on the 'Save' button gave no response (Ref 50.31)

Passwordstate 5.0 Build 5030 (20th May 2011)

Updated - Changed drag and drop nature for grid columns so it inserts the column instead of swapping (Ref 50.28)
Updated - Modified adding of new Password Lists so Security Administrators can allow or disallow either Shared or Private Password Lists (Ref 50.29)
Updated - Disabled the ability for adding permissions to Private Password Lists (Ref 50.30)

Passwordstate 5.0 Build 5027 (19th May 2011)

Fix - 'Account Type' field was being treated as a mandatory field (when it shouldn't have been) when adding/editing passwords (Ref 50.23)
Fix - Spelling mistake in 'Grid Layout Actions' drop-down list (Ref 50.24)
Fix - Reorganizing grid columns was not being saved when clicking on 'Save Grid Layout' (Ref 50.25)
Fix - Applying 'Bulk Permissions' for Active Directory security groups was not working properly for permission type Modify (Ref 50.26)
Updated - Updated to the latest version of ASP.NET Ajax components (Ref 50.27)

Passwordstate 5.0 Build 5022 (4th May 2011)

Fix - Fixed issue whereby the approver's names for Handshake Requests approvels was not being displayed correctly (Ref 50.22)

Passwordstate 5.0 Build 5021 (28th April 2011)

Fix - When viewing all User Accounts, any disabled accounts did not have the 'Disabled' flag shown correctly (Ref 50.18)
Fix - Time-based access to Password Lists and individual passwords was not being correctly removed at the specified time (Ref 50.19)
Fix - Password Reset Recommendation emails where being sent to disabled User Accounts (Ref 50.20)
Updated - If a user's account is disabled, their access to Passwordstate will be disabled immediately - previously it required them to start a new session to received the disabled message page (Ref 50.21)

Passwordstate 5.0 Build 5017 (19th April 2011)

Fix - Further improvements to the Image dropdown list being cutoff at the bottom of the browser when adding or editing Password Lists. (Ref 50.15)
Fix - Scrollbar was not showing when clicking on the Password List dropdown list for auditing screens (Ref 50.16)
Updated - Improvements to auditing whereby all records are shown by default - no longer are you forced to filter by specific Password Lists or Events (Ref 50.17)

Passwordstate 5.0 Build 5014 (12th April 2011)

Fix - When using ScramblePad Authentication, the error "Incorrect syntax near the keyword 'DEFAULT'." was received when logging in, but only after the browser window had been idle longer than the time specified for 'Inactivity Time Out' in the Administration area (Ref 50.12)
Fix - When using ScramblePad Authentication and prompted with the logout screen, you weren't asked to log back in using the ScramblePad authentication (Ref 50.13)
Updated - Updated the 'Share Navigation Tree View' page to inform the user the settings are only applied once when clicking the save buttons - it does not get applied ongoing (Ref 50.14)

Passwordstate 5.0 Build 5011 (9th April 2011)

New - You can now share your Password List Navigation Tree View with other users (Ref 50.11)

Passwordstate 5.0 Build 5010 (8th April 2011)

New - Increased the countdown timer for generating the initial ScramblePad pin to 30 seconds (Ref 50.10)

Passwordstate 5.0 Build 5009 (6th April 2011)

Fix - Could not purge Audit records when using the High Availability module - SQL Server replication prevented it (Ref 50.07)
Fix - When using the High Availability module, clicking on the button to purge Audit Records incorrectly reported the records were going to be purged (Ref 50.08)
Fix - When Copying or Moving passwords between Password Lists, the popup window would not close when using Firefox (Ref 50.09)

Passwordstate 5.0 Build 5006 (3rd April 2011)

Fix - The Image dropdown list was cutoff at the bottom of the browser when adding or editing Password Lists. Only effected small screen resolutions (Ref 50.01)
Fix - When an unregistered users browses to the Passwordstate web site they receive the error - 'Incorrect syntax near.... DEFAULT' (Ref 50.02)
Fix - When exporting data to csv, some non-english character sets where not being translated correctly (Ref 50.03)
Fix - Improved memory consumption for w3wp.exe process (IIS Worker Process) (Ref 50.04)
Updated - Updated to the latest version of ASP.NET Ajax controls (Ref 50.05)
Updated - Updated logout screen to provide the option to log back in (Ref 50.06)

Passwordstate 5.0 (19th March 2011)

New - Complete new user interface
New - New and improved home page for searching across all Password Lists, quick access to favorites, and statistics for most active users and passwords
New - Improved role-based access – read, modify and admin permissions to Password Lists and individual passwords
New - Logical grouping of Password Lists in a navigation tree
New - Customised fields per Password List
New - Time-based access to passwords and Password Lists – either at a specific date, or when someone changes a password
New - Handshake Approval for access – two List Administrators must approve access before a timer elapses
New - Copy or move passwords between Password Lists
New - 32 different audit items are now tracked and reported
New - Active Directory or Forms-Based authentication
New - Optional secondary ScramblePad authentication for Active Directory Integrated Authentication
New - Local or Active Directory Security Groups can be used for assigning permissions
New - Synchronize access via Active Directory Security Groups membership
New - 12 different roles for Security Administrators of Passwordstate
New - Word phrases added to the Password Generator
New - Set expiry date on user accounts registered in Passwordstate – useful if someone was leaving your company
New - Password reset recommendations when someone’s access to Passwordstate or Password Lists is removed
New - High Availability module available – read only copy, using SQL Server to replicate data
New - Prior to importing data into Password Lists you can now perform a Test Import to first validate your data

Passwordstate 4.5 (9th November 2010)

New - Added Random Password Generator allowing bulk creation of passwords (Ref 45.01)
New - Added optional feature for automatically generating a random password when creating a new password record (Ref 45.02)
Fix - Fixed a bug where IPv6 IP Addresses could not be added to the Audit table (Ref 45.03)

Passwordstate 4.4 (31st October 2010)

New - Added feature whereby you can quickly filter the grid columns by pressing the Enter key - as opposed to selecting one of the filter types from the dropdown list (Ref 44.01)
New - Added feature whereby the filtered state of grids is maintained across multiple pages (Ref 44.02)
New - Added improved notification for saving grid layouts, and when passwords are copied to the clipboard (Ref 44.03)
New - Added feature where you can bulk update passwords in a Shared Password List (Ref 44.04)
New - Added two additional reports (formatting improvements) (Ref 44.05)
Fix - Fixed issue where proxy servers were caching some page content (Ref 44.06)
Fix - Fixed bug in 'User Access to Passwords' report whereby a user's firstname or surname may not have been displayed if the previous user's firstname or surname was the same (Ref 44.07)
Fix - Fix bug introduced in 4.3 where the characters < > & weren't displayed correctly when viewing passwords in the grid view (Ref 44.08)

Passwordstate 4.3 (24th October 2010)

New - Added the feature whereby you can show/hide the passwords in the grid view simply by clicking on them (Ref 43.01)
Fix - Fixed issue where storing the value of password in the Password field caused a duplicate Control ID when editing the record (Ref 43.02)
Fix - Fixed Unhandled Exceptions error when accessing User Accounts area (Ref 43.03)
Fix - Fixed issue where long password fields where bleeding into other grid columns - they now wrap correctly (Ref 43.04)
Fix - Fixed issue where password strength was not always displayed correctly (Ref 43.05)

Passwordstate 4.2 (27th July 2010)

New - Added feature whereby access to multiple Shared Password Lists can be administered for a user, instead of individually (Ref 42.01)
New - Supports new Registration Key format (Ref 42.02)
New - Added copy password to clipboard feature (this also adds an audit record) (Ref 42.03)
Fix - Improved error checking for NTFS file permissions (Ref 42.04)
Fix - Fixed issue error whereby spaces in Active Directory usernames was reporting corrupted data in the database (Ref 42.05)
Fix - Fixed issues whereby imported CSV files where not being deleted after import completed (Ref 42.06)
Fix - Fixed issue whereby it was possible to grant a user access to a Shared Password List multiple times (Ref 42.07)

Passwordstate 4.1 (27th December 2009)

Fix - When enumerating an Active Directory security group, it did not clear the results of the 'Users' textbox each time you enumerate - it appended to the existing entries (Ref 41.01)
Fix - For any date fields in grid view, the filter icon was wrapped to a second line, regardless of how wide the column was (Ref 41.02)
Fix - Filtering on 'Status' in User Accounts grid was not functioning correctly (Ref 41.03)
Fix - Error when using 'Editor' componenent - could not find a part of the path 'c:\windows\system32\inetsrv\~\App_Code\RadEditorToolbar.xml'. Moved xml file to App_Data to support new ASP.NET precompilation (Ref 41.04)
Fix - System Setting Screen - hour drop down list was not visible properly like minutes (Ref 41.05)
Fix - User Acceptance Policy (UAP) data wasn't added to the database when upgrading from version 3, and when changing between using and not using a UAP, the navigation panel wasn't updated unless you refresh the whole browser window (Ref 41.06)
Fix - When turning on password protecting the Administration area, the requirement to log in wasn't working until you next started to use Passwordstate (Ref 41.07)
Fix - If a user tried to add a record to the database which has either of the characters < or >, they get an error about 'A potentially dangerous Request.Form value was detected from the client' (Ref 41.08)
Fix - After viewing a password history record within the 'Shared Password Lists' section, returning to previous screens by clicking the 'Back' button would produce an error reading the database (Ref 41.09)
New - Provide further protection against the decryption of sensitive data by someone writing targeted asp.net code (Ref 41.10)
New - Made improvements to all grid objects to improve loading time (Ref 41.11)
Fix - Fixed issue where Database Administrators could change ownership of Personal Passwords via the back-end database (Ref 41.12)
Fix - Fixed issue where password strength was not being correctly reported within the 'Administration' area (Ref 41.13)
New - Password fields of the same value no longer show the same encrypted value in the database (Ref 41.14)

Passwordstate 4.0 (14th October 2009)

New - Password Strength Policy. Security Administrators are now able to specify a Password Strength Policy, providing users with visual representation of password strength when either entering passwords, or reporting against them (Ref 40.01)
New - Grid View Improvements. Various improvements have been made to the grid view on all pages, relating to usability and compliance to web standards (Ref 40.02)
New - Highlighting of Expiring Passwords in Grid View. Expired, or expiring passwords, are highlighted in red on the grid view, providing users with a reminder that the password must be reset (Ref 40.03)
New - Save Grid Layout Notification. Users are now notified each time they save any changes to the grid view layout (Ref 40.04)
New - Enable/Disable Email Templates. Security Administrators are now able to enabled or disabled individual email templates, preventing users from being notified when certain events are triggered (Ref 40.05)
New - User Acceptance Policy Improvements. ‘Mandatory User Acceptance Policy’ must now be read and accepted prior to users being able to use Passwordstate – previously closing the popup window would allow access (Ref 40.06)
New - Log failed attempts at Accessing the ‘Administration’ area. An audit record is now added when non Security Administrators try to access the ‘Administration’ area (Ref 40.07)
New - Export and Purge Audit Table Records. Security Administrator’s are now able to export and purge all records from the Audit table, assisting with archival of aged data (Ref 40.08)
New - Popup Window Improvements. When a popup window is displayed e.g. User Acceptance Policy, background information is now greyed out, giving the popup window more focus (Ref 40.09)
New - Password Masking on Add/Edit Pages. A preference option is now available to all users allowing them to show or hide (mask) passwords on each of the add/edit pages. This default preference can also be overridden on each of the pages if the user chooses to (Ref 40.10)
New - Multiple Active Directory Domain Support. Multiple Active Directory domains are now supported, including domain account authentication, and cross domain querying for account management (Ref 40.11)
New - Audit Visibility for all Users. Audit information is now available to all users, providing history of changes to personal passwords, and any shared passwords they have been granted access to (Ref 40.12)
New - Expiring Passwords Calendar View. A calendar view is now available showing when passwords are scheduled for expiry. The calendar shows both personal and shared passwords (Ref 40.13)
New - New Passwords Home Page
New - Email Improvements. In addition to sending emails via anonymous SMTP, sending from an authenticated mailbox is now possible (Ref 40.15)
New - Expiring Passwords Email Report. The Expiring Passwords popup window reminder has now been removed, and replaced with an automated email report. System Administrators can specify at what time of the day the emails are generated, and users can elect to receive the report either daily, weekly or monthly (Ref 40.16)
New - Emailing From Grid View. Security Administrators can click on a users email address in the User Accounts grid view, initiating the creation of a new email through the user’s email client (Ref 40.17)
New - Updated Ajax Components. All Ajax components have been updated to the current release, providing better performance and patches to known bugs (Ref 40.18)
New - Password Strength Compliance Report. Based on the predefined password strength rules set by the Security Administrator(s), a report can now be run showing policy compliance (Ref 40.19)
New - Improved Online Help. Improvements have been made to the online help within Passwordstate, with detailed instructions now available for all screens (Ref 40.20)

Passwordstate 3.1 (1st June 2009)

Fix - Certain special characters in the Password field was causing issues with displaying the password in the grid view and password history screens (Ref 31.08)
Update - Updated help file for specifying a value for the 'Domain Name' field in System Setting screen - explains how to specify LDAP query string for large Active Directory implementations (Ref 31.07)
Update - When querying users or security groups in Active Directory (when adding users), an animated progress graphic is displayed whilst the query is executing (Ref 31.06)
Update - Changed compare history pages so the passwords are masked by default (Ref 31.05)
Fix - Made various hyperlinks more apparent by setting 'text-decoration' property to 'underline' (Ref 31.04)
Fix - Fixed issue where granting access to a Shared Password List for a user was not displaying any search results (Ref 31.03)
Fix - Fixed issue when exporting passwords where a string field was being incorrectly interpretted as a date field (Ref 31.02)
Fix - fixed data import issue from version 2 where rogue user accounts where assigned to shared password lists (Ref 31.01)

Passwordstate 3.0 (30th March 2009)

New - Completely rewritten in ASP.NET and AJAX technologies
New - History of changes to passwords is now maintained
New - Visual comparison of password history records
New - Receive email notifications when changes are made to Shared Password Lists (Add, Edit or Delete)
New - Password reset reminders
New - New 'List Administrator' role for controlling who has access, and who can modify
New - Import & export capability for most areas within Passwordstate
New - New grid object which allows intelligent filtering of all data
New - User can now specify what they wish their default page to be - Personal Passwords, all Shared Password Lists, or a specific Shared Password List
New - End-to-end event auditing
New - Customised email templates. Security Administrators can now customise the emails Passwordstate generates
New - Shared Password List reporting. Security Administrators can now see and administer all Shared Password Lists
New - 2nd level password protection for 'Administration' area is now possible
New - Active Directory lookup for adding new users to Passwordstate
New - User Acceptance Policy. Security Administrators can choose to display a User Acceptance Policy for Passwordstate Usage
New - 256bit AES data encryption and code obfuscation
New - Unique initialisation vector per installation
New - Automatic logout period can be specified to kill inactive sessions
New - Passwordstate now only supports Integrated Windows Authentication
New - Enable or disable accountsv
New - Online help
Fix - Various bug fixes from version 2.0

Features