Jump to content

All Activity

This stream auto-updates     

  1. Yesterday
  2. I've linked 2 password entries to the URL maxdev (a local dns that I use for development). When I use the browser extension context menu to fill in the password, I always get the password for entry that is highest up in the password list. I suspect that it takes the first match for the linked URL, instead of checking further down in the list for the correct match. To summarize: Both entries below (Portal NO and Portal SE) are linked to url http://maxdev. Whichever option I choose in the browser extension context menu, I always get the credentials connected to Portal NO.
  3. I’ve used the new function ”Link Account to Multiple Web Site URLs”. I’ve linked 2 accounts to `localhost`. Now when I use the autofill button on the password fields, I get 2 options, but I don’t which is which. The names of the accounts are the following: (I've removed my personal email from the image) So printing out the title for accounts that are of type “Linked URLs” would solve my problem.
  4. support

    Where to download Safari browser extension

    Hi Jeff, We're currently working on it at the moment. The whole process has changed, and they require you to also make coding changes, so we're not exactly sure how long it's going to take. Have you checked our the new Chrome extension, which you can use on OSX - it is far better that the Safari one we have? Regards Click Studios
  5. jeffadler

    Where to download Safari browser extension

    Just checking back in on this to see if you might have a timeframe when you expect to update the Safari extension? Thanks!
  6. Hi Guys, We might look into this for version 9 of Passwordstate - which we're currently working on. Regards Click Studios
  7. Issue: On your Passwordstate web server, you may see multiple errors of this type: An error has occurred calling the method MoveSelfDestrucAuditingData(). Error = One or more errors occurred. An error has occurred calling the method MoveSelfDestrucEmailData(). Error = One or more errors occurred. An error has occurred calling the method DeleteOldSelfDestructMessages(). Error = The remote name could not be resolved: 'keyring.home.sourcenix.no' An error has occurred calling the method MoveSelfDestrucAuditingData(). Error = One or more errors occurred. An error has occurred calling the method MoveSelfDestrucEmailData(). Error = One or more errors occurred. An error has occurred calling the method DeleteOldSelfDestructMessages(). Error = The remote name could not be resolved: 'keyring.home.sourcenix.no' An error has occurred calling the method MoveSelfDestrucAuditingData(). Error = BadRequest, Bad Request Fix: The reason you are seeing these errors is because the Passwordstate Windows Service cannot contact the Self Destruct site/api. There could be three reasons for this: The base URL is incorrect under Administration -> System Settings -> Miscellaneous. This should be your current Passwordstate URL with the correct port number. You are possibly using a web load balancer, are you using one of these that you know of? You may not have configured the Self Destruct Application, which is only required if you have previously upgraded from an older version of Passwordstate. You can tell if it’s configured as an application because the Self Destruct site under Passwordstate will look like this: If yours just looks like one of the other folders, you will need to configure it as an application by following the instructions under Help -> User Manual -> KB Articles -> Configure Self Destruct IIS Application. Regards, Support
  8. Last week
  9. We are authenticating with AD Accounts. My understanding is that if we look at the hierarchy of password use and associated permissions, you have potentially implemented the the following: 1) Know whether a password exists 2) Use for remote credentials 3) view the password record 4) copy the password 5) edit/modify the record ... These are protected by Authentication into PasswordState and then associated Permissions for my user/groups. 3 and above are optionally protected by Additional Authorisation on a Password List. Thus, to know if a password exists or use it for linked credentials, I simply need permission to a Host record that name matches a Remote Session Credentials with that associated password. Or I need permission to create a Remote Session Credential, and they will show in the search, regardless of additional authorisation.
  10. Thanks Steve. For reasons explained, we do not necessarily agree with you that this is a violation, but understand your point of view. Option 2 is a considerable amount of work, and breaks the workflow of this feature, so it would be unlikely we would investigate this - unless many customers needed it. Also, are you authenticating with Local Accounts, or Active Directory accounts? If local accounts, this can be done from the Passwords tab, and you don't need access to the Hosts tab for this - which would fulfill your requirement here. Regards Click Studios
  11. The ability to browse or search Passwords in PasswordLists that have Additional Authorisation is currently restricted, until the Additional Authorisation has been authenticated. This restriction does NOT happen, when Creating Remote Session Credentials or choosing RDP Linked Credentials. This is, in theory, a violation of the Additional Authorisation. This could be corrected in one of two ways:- 1) Don't allow them to be shown, unless authenticated (just like search) 2) Prompt for Authorisation when attempting to use the password My preference would be option 2.
  12. Hi, I am looking for a new feature, that upon login after entering primary authentication method (e.g. Users/Password) that users will be able to select (from a drop down or similar) their secondary authentication method. For example, if a user had multiple authentication options configured, such as Google Authenticator, YubiKey authentication, Email temporary pin code, they could select the most convenient authentication method at the time of login. Another example could be that users only have YubiKey authentication implemented, and there was an issue with the Yubico API or the internet connectivity of the PasswordState server, users will not be able to login due to the reliance on the Yubico API. In this case the user could choose to use another authentication method, such as Google Authentication which does not rely on internet connectivity allowing them to successfully log in.
  13. Currently when a person asks to to reset their password, the email they receive is very generic and gives no indication which company the email has come from. I would like the ability to customize this message and include a company logo, but at the very least include meaningful contact details the client can use in the event they receive the email and it's not something they have asked for, or have some other issue with it.
  14. Hello, With this new feature, you do not use Generic Fields for this, instead you use the menu you see below in my screenshot. We hope this helps. Regards Click Studios
  15. support

    Freeipa Users

    Sorry mtovey, We still do not have any support for this - implementing something like this would take a considerable amount of time, considering the number of different LDAP systems available. Regards Click Studios
  16. support

    Folder API Key Child List Access

    Hello, Unfortunately this is not possible. If you do not want to use the System Wide API key, have you considered our Windows Integrated API - this does not require API Keys, and gives you the same level of access as when you are logged into Passwordstate. Regards Click Studios
  17. support

    Security Groups not shown

    Thanks for the feedback Martin - we appreciate it.
  18. Is it possible to use a folder API key to manage all lists within the tree for folders with permissions propagating down? We do not want to have a global system API key available to users however we do have a need to automate use and creation of password lists and passwords within a single directory. This would include searching for an existing list, searching for a specific password entry in the list, and making the respective lists and entries if not found.
  19. mtovey

    Freeipa Users

    Did this ever go anywhere? We have Passwordstate 8 now and we have recently deployed IPA to manage access to our Linux / Unix system. Now we would like to tie that to Passwordstate. Having Passwordstate perform auto-discovery through the IPA system would be very useful. Since IPA is really just a front end for LDAP, I can't imagine that it would be difficult for Passwordstate to perform queries to the LDAP system.
  20. Hello Everybody, i recently upgraded to the latest PState build and want to test the option where a single Password record can be linked to multiple Web Site URLs. I changed the password template by adding multiple generic URL fields, added the URLs in the respective fields within the AD User credential, saved the changes and when I click on the generic URL fields, there is no match happening. Is there some documentation or examples on how this works? Thanks and Cheers!
  21. MartinWeber

    Security Groups not shown

    OK that was quick, the problem is solved. But when I add new users to a group, the search result always show all users. Maybe its better to hide users they are already in the group.
  22. Hi Steve, Thanks for your feedback - it's appreciated. Most of our implementations are built on customer feedback and requests, and if you would like some options which are different to what others have requested requested, you can log a feature request in the following sections of our forum - https://www.clickstudios.com.au/community/index.php?/forum/38-feature-requests/ To date, no other customers have expressed a desire for this sort of implementation, which is why we have not implemented anything for it. The 'Additional Authorisation' option was also added approximately 5 years before we implemented Remote Session Management. And I guess the difference with Remote Session Credentials is you do not get to view/update/delete the password, as per the search results restrictions - but you can obviously use it. This is the by design aspect I was referring to. Regards Click Studios
  1. Load more activity
×