Jump to content

All Activity

This stream auto-updates     

  1. Last week
  2. Hi jupman, With the training videos above, you need to specify the correct data to be imported, based on the fields you have selected for the Password List. So we recommend exported the empty CSV template we provide for each Password List, and populatre the fields as appropriate. You also then have the Test Import button to ensure there are no data issues. Regards Click Studios
  3. Hi JSmith, There are no plans to add that functionality at the moment, but you can request them in the Feature Requests section of this forum. Thanks very much. Regards Click Studios
  4. Hi Matt, Sorry you've run into this, and can you please look at the following forum post to fix this - IIS is caching some files, but only occassionaly - https://www.clickstudios.com.au/community/index.php?/topic/6773-server-error-in-application-after-upgrade/Regards Regards Click Studios
  5. Hello G5, Can you please trying using Chrome, to rule out an issue with that older version of Firefox? I'm suspecting there might be some Javascript errors, so can you please check the 'Console' in your browser to see if any are being reported? Lastly, do you use any Reverse Proxies like nginx? Regards Click Studios
  6. So, how does one add 100+ items to passwordstate? Say, 40 switch, 20 routers, and 20 firewalls, with two radius keys for each devices saved to 20 locations?
  7. Great, thanks. Are there any plans to add the ability to delete folders and password lists to the API?
  8. I've set up a Passwordsafe Installation for evaluation. Everything work's fine except for adding new passwords in e.g. lists. If I hit the save button it just load endlessly. Cancel works fine. Shall I provide more information? Browser: Firefox 68.10.0esr OS Server installation: Windows Server 2019 DC SQL Server: 2017 Express Thank you.
  9. Hi, I'm trying to update our Passwordstate to the new version and when the update system logs me out at the end of installing the updated files, I get the following error: In EventViewer I have the following errors against the PasswordState service: An error has occurred executing the call 'QueryBackupSettings' - Padding is invalid and cannot be removed. An error has occurred executing the call 'QuerySystemSettings' - Padding is invalid and cannot be removed The contents of the UpgradeLog.txt file is the following: 8/7/2020 10:39:33 AM - Passwordstate upgrade started. 8/7/2020 10:39:47 AM - Stopping of the Passwordstate Windows Service started. 8/7/2020 10:39:48 AM - Stopping of the Passwordstate Windows Service completed. 8/7/2020 10:39:48 AM - Compressing and backing up of web files started. 8/7/2020 10:40:27 AM - Compressing and backing up of web files completed. 8/7/2020 10:40:27 AM - Backing up of database started. 8/7/2020 10:40:28 AM - Backing up of database completed. 8/7/2020 10:40:28 AM - Removing old backups started. 8/7/2020 10:40:29 AM - Removing old backups completed. 8/7/2020 10:40:29 AM - Downloading of file passwordstate_upgrade.zip started. 8/7/2020 10:41:19 AM - Downloading of file passwordstate_upgrade.zip completed. 8/7/2020 10:41:19 AM - Extracting of files in file passwordstate_upgrade.zip started. 8/7/2020 10:42:43 AM - Extracting of files in file passwordstate_upgrade.zip completed. 8/7/2020 10:42:43 AM - Copying of new files started. 8/7/2020 10:43:51 AM - Finished copying of new files. 8/7/2020 10:43:51 AM - Starting of the Passwordstate Windows Service started. 8/7/2020 10:43:52 AM - Starting of the Passwordstate Windows Service completed. 8/7/2020 10:43:52 AM - Finished starting the Passwordstate Windows Service. 8/7/2020 10:43:52 AM - Finished deleting the Passwordstate_Upgrade.zip file. 8/7/2020 10:43:56 AM - Finished deleting all temp files in the folder /upgrades/passwordstate. 8/7/2020 10:43:56 AM - Preparing for upgrade has completed successfully. The server is running Windows Server 2012R2. I can "fix" the error by restoring the web files from the backup, but when I try to run the upgrade again I get the same error. Any help would be useful. Thanks, Matt
  10. Hi DerBagger, Access Denied in our script could possibly be caused by the account being locked out, which I assume isn't the case as you can run the script manually on the remote host. Or possibly if you have UAC (User Account Control (UAC) turned on, on your Passwordstate web server. Could you try turning it off, and then run the script again? Does this help at all? To turn it off, please search for UAC under the start menu, and turn the slider down to "Never Notify" If it does we may need to put a better explanation of this in the error output, instead of just "Access is Denied". Regards, Support.
  11. Hi JSmith, Thanks for the forum post and this does look to be a bug. I can replicate both issues. I've logged a bug fix for this and we'll report back here as soon as we release a new build with this fix. It will be in the next release which might be 1 - 2 weeks away at this stage. If you'd like us to email you as well as report back here, please let us know and we'd be happy to do that. Thanks for brining this to our attention. Regards, Support
  12. Hi David, Passwordstate already supports SQL DB in the cloud - we have many customers using this in Azure and AWS. Regards Click Studios
  13. I also just noticed that the Guide isn't returned at all in the response.
  14. Hi, When I post to /winapi/folders to create a new folder the result I get back has the incorrect description. It seems to get the name as the description. The actual folder that gets created has the proper description set, this only appears to be an issue with the data returned from the post. See the example below. I set the description to "this is the desc" but the return has the description "test1" which is the name. PS Z:\powershell_scripts\Passwordstate> $json { "NestUnderFolderID": "12", "FolderName": "test1", "Description": "this is the desc", "Guide": "this is the guide", "SiteID": 0, "CopyPermissionsFromPasswordListID": "10" } PS Z:\powershell_scripts\Passwordstate> Invoke-RestMethod -Method Post -uri 'https://passwordstate.xxxxxx/winapi/folders' -ContentType 'application/json' -Body $json -UseDefaultCredentials FolderID FolderName Description TreePath -------- ---------- ----------- -------- 68 test1 test1 \Dev
  15. We plan to move more and more our infrastructure on the cloud. having SQL DB PaaS comptible should be a plus.
  16. Hey guys, we are trying to set up your password reset feature for our Windows 2019 servers. We want to manage a different local admin account on each server. The funny thing is that we can reset the accounts via Passwordstate, but we canĀ“t check the heartbeat. Every time I try to send a manuel heartbeat I get the following error: A manual Account Heartbeat check failed to validated the password for account Lapras (\IT\Windows\Windows Server lokale Admins) of Account Type 'Windows' on Host juno.****.de. Error = Failed to validate the local password for account 'Lapras' on Host 'juno.****.de'. Error = Ausnahme beim Aufrufen von "ValidateCredentials" mit 3 Argument(en): "Zugriff verweigert" I tried to run your heartbeat ps script from the host itself. It is working on the host without a problem. Do you guys have any idea what I did wrong?
  17. Hi Guys, We've figured out a way of getting this working, and it will be available in the version 9 release. Regards Click Studios
  18. Hi jzimmer, I've done a code review, and we do not appear to have any checks on the cert name as mentioned - basically our code is identical for LDAP and LDAPS, but with LDAPS we use a different port number. And we use the domain details you specific on the screen Administration -> Active Directory Domains. If you by pass your Load Balancer for this, are you able to get it working in that instance? Regards Click Studios
  19. Hi MB, If you edit an existing Host folder, you will see different wording of "When new Host records are added to Passwordstate which match the criteria below, also add them into this Folder.". So this feature already exists for you, and sorry of the wording on the 'Add Folder' screenis a little misleading. Regards Click Studios
  20. We have a security request to only allow certain lists to be used by the browser extension. From the administrative side, if there were a user policy to "only use private lists" for users, or have an option on password lists for "do not allow browser extension use", that would help us. This may be an edge case, but if it can be done, then the default behavior would remain as-is to not impact existing folks, while adding the option to deny/block the extension or user from using certain lists with the browser extension. Thank you.
  21. Hello Actually, on host tab it's possible to create a folder and populate it with a filter (by hostname/title/Tag) But as mentioned in the text, it's only at the creation. It should be interesting to add an option or something like that which make this filter permanent. Like this, when other machines are discovered with a Host discovery, they are immediately added to the folder. Regards MB
  22. We are going from LDAP to LDAPS. Our data center is in AWS. Our ldap fqdn points to a cname and that points to a load blancer. I have loaded our LDAPS cert onto the server and it looks good. but when I switch from LDAP to LDAPS it fails to log in with a default message in passwordstate: Failed 'Active Directory' login attempt for UserID 'yyy\zzzz' from the IP Address 'yy.yy.yy.yy'. Possible incorrect Username or Password, or this could also be caused by restricted Logon Hours in Active Directory. I pulled up event viewer and found this in the log: The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is hhhhhh.elb.us-east-1.amazonaws.com. The TLS connection request has failed. The attached data contains the server certificate. it seems for some reason when password state sends the LDAPS request, it is looking for the name the cname points to, and not the cname itself. We have other systems running webservers with this same set up and it works. So it is not a set up issue. I was wondering if there is a way to not care if the cert name matches the host name, or any other way for me to get LDAPS to work. Current Version 8.8
  23. Whoops, i posted in the wrong area, i am on Version 8.8. I am going to move this to to 8.x form
  24. Hi jzimmer, I've done a code review, and we do not appear to have any checks on the cert name as mentioned - basically our code is identical for LDAP and LDAPS, but with LDAPS we use a different port number. And we use the domain details you specific on the screen Administration -> Active Directory Domains. Are you still using version 7, since you posted in the part of the forums? If so, we'd suggest upgrading to version 8 and try again - version 7 will be out of support soon as well, as soon as we've released version 9. Regards Click Studios
  25. We are going from LDAP to LDAPS. our data center is in AWS. Our ldap fqdn points to a cname and that points to a load blancer. I have loaded our LDAPS cert onto the server and it looks good. but when I switch from LDAP to LDAPS it fails to log in with a default message in passwordstate: Failed 'Active Directory' login attempt for UserID 'yyy\zzzz' from the IP Address 'yy.yy.yy.yy'. Possible incorrect Username or Password, or this could also be caused by restricted Logon Hours in Active Directory. I pulled up event viewer and found this in the log: The certificate received from the remote server does not contain the expected name. It is therefore not possible to determine whether we are connecting to the correct server. The server name we were expecting is hhhhhh.elb.us-east-1.amazonaws.com. The TLS connection request has failed. The attached data contains the server certificate. it seems for some reason when password state sends the LDAPS request, it is looking for the name the cname points to, and not the cname itself. We have other systems running webservers with this same set up and it works. So it is not a set up issue. I was wondering if there is a way to not care if the cert name matches the host name, or any other way for me to get LDAPS to work.
  1. Load more activity
×
×
  • Create New...