Jump to content

All Activity

This stream auto-updates     

  1. Yesterday
  2. Hi Gagan, We actually have this UserID field in a later build of Passwordstate - see screenshot below. So you will need to upgrade in order to use this feature. If needed, you may also need to upgrade your Portal install as well, and the following document will tell you how to do that, and whether an upgrade of the portal is required - see section '10. Upgrade Dependency Matrix' https://www.clickstudios.com.au/downloads/version8/Upgrade_Instructions.pdf We hope this helps.
  3. Hi tburke, With these environments where WinAPI is not configured like this, can you tell us if these are old environments that you've upgraded from version 7? If so, we provided some post upgrade instructions for what's required here, and you can find them in the User Manual under the Help Menu - see screenshot below. If you did not upgrade from Version 7, can you let us know so we can investigate? Regards Click Studios
  4. Last week
  5. It's not, just plain folder. All of my installations I've done I think have looked like this....except I do have an older build still at version 8.4 (build 8459) and it looks like what you have posted with "WinAPI" set as an and application. I clicked on WinAPI and converted it to an application and set it to the PasswordstateApps pool. That seemed to make it work. I was wondering why the winapi wasn't working in the server we rolled out into production and it worked on my original test setup. Is there anything else I should do or change or is what I did probably fine? Pool looks like this. And the applications associated with the PasswordstateApps pool looks like this.
  6. Hey Guys, This is regarding password expiry notification for different domains.. Can anyone help me out in distinguishing different domain(s) for password expiry notification ? As of now, it does not show for which domain the password is about to expire. In system settings, under password expiry notification setting, I am only able to see 3 variables, none of them shows for which domain. I have tired to add [UserID] in html code, but no luck. Is there anyway where we can add the domain variable as well ? to be able to show for which domain the user password is about to expire. Hello [FirstName], The password for your Active Directory account needs to be reset within the next [Days] day(s). If your password expires, you will not be able to log on to the network and perform your work. Please reset your password either via the Windows Login screen, or via the Password Reset Portal by clicking on the following URL - [PasswordResetPortalURL]. Variables which can be used in this template are [FirstName], [Days] and [PasswordResetPortalURL]. Thank you, Gagan
  7. Hi, It would be nice to have the possibility to set a custom header and footer for all Email Templates. At the moment we have a custom footer which I have to manually configure for each template and also have to modify for all the new templates being added. The header and footer would still need to be able to use placeholder text like [SiteURL]. An extra option to configure these outside of each template would be much appreciated.
  8. support

    Security architectural diagram

    Hi tburke, We're working on a document at the moment for this, and I can email you a draft copy now. We will eventually publish this on our web site, and include it in downloads. Regards Click Studios
  9. I have pieced together most of the security ports needed to setup possible systems from the security admin manual. https://password.gcpud.org/help/securityadminmanual/index.html?introduction.htm My request to Clickstudio is for a specific network diagram that explains all the ports that need to be opened in all of the Passwordstate scenarios. This includes the remote site, reset portal, mobile. I realize it's mostly 443 ports being opened but there are things like the gateway on the Passwordstate server seems to require a certain port for communication. Scripts require ssh and winrm. What ever the heartbeat stuff needs...stuff like that. I'd like to see a single, nice clear diagram of all these things working together so I can just hand it over to my security administrator and not spend allot of time trying to figure out if something is incoming through the firewall or needs two way traffic and what ports. I'd like to know all the ports as if even the OS servers our completely closed up and I need to re-open up just what I need to get things working. I've seen some diagrams looking through the documentation but not everything in one spot so I can have a fairly quick meeting with our network security people.
  10. Hi Marek, No it is not sorry. We do not have the ability to have live replication of the SQLite database. Regards Click Studios
  11. Hi Tbourke, Can you open IIS and check to see if your Windows API is configured similar to my screenshot below? It should look like a website icon, not a folder icon. Can you also look under the Application Pools to ensure there is one for the WinAPI and also who is it running under? Is it Network Service or some other account? Regards, Support
  12. HI tburke, Thanks for confirming, and Anonymous Authentication being enabled is the default for a new install, so you must have disabled it? If you enable Maintenance Mode under a certain account, you need to log back in with that account after the first phase of the upgrade is complete. So disabling Anonymous Authentication here has caused this issue for you, as you could not longer log back in with this 'Forms' account you're referring to. Regards Click Studios
  13. Thanks for your suggestions tburke - we appreciate it.
  14. With the new request access to passwords feature, the approver can only reject or approve a request. It's up to the requestor to set a date and time for when he/she will have access to the record. A customer has requested that the approver should be able to modify that time during the approval process. Regards, Support
  15. support

    API for export all KeePass encrypted zip

    Hi Tburke, We generally recommend High Availability for disaster recoveries, as exporting all passwords does not export Private password lists. Unfortunately, we do not have an options in the UI to zip a file or password protect it sorry, so a custom script would be the best way to achieve this:) Regards, Support.
  16. As one of my programmatic secondary backup plan I wanted to use the API to dump the passwords periodically for save keeping. I'm reading up on the api call to do the export all and it's pretty easy to get the data using a simple powershell command as described in the documentation. Then you can just export that into a CSV by piping it into "Export-CSV". Easy enough, but I really like the in UI where I can export as KeePass encrypted zip. Before I try and write this myself, is this already available as a sample or API parameter?
  17. Looks like the link for the "Windows Integrated API Documentation" on the 8519. I reconfirmed with build 8556 and see it there as well.
  18. Ah, this worked great, thank you! So the only thing really missing here is setting that value under "Administration" and "System Settings" and "miscellaneous" at the same time. I would think if your replacing the webserver you would want this updated as well. Maybe have it as an option when adding the server like this? This seems like it's really close to being able to be containerized. I'd love that to be the update path, just drop in a new container instead of pushing these files around...plus it would be easier to test out new features before deploying them. Since all the configuration is kept in the database, this would be really slick setup.
  19. Anonymous Authentication was disabled for the site. Flipping it to "enabled" allowed me to log in and the second stage of the update worked great. For this "Forms" setup I was testing with (just isolated setup to test this sort of thing so I didn't have it connected to an AD), is part of that particular setup, do I need to manually flip this option in the IIS site settings?
  20. So is it not possible to have selfdestruct portal on the both servers in HA?
  21. Well this has been a long time in the reply and we're sorry we haven't reported back here earlier about this, but converting Private Password Lists to Shared Password Lists is now disabled by default as of Passwordstate 8. If you need to convert a Private List to a Shared one, please see this forum Post: https://www.clickstudios.com.au/community/index.php?/topic/2398-how-do-i-take-ownership-of-a-private-list/ Regards, Support
  22. Hello. We've just made a change for the next release, and you won't need to manually enter this blank GUID1 string in the file - it will work as expected and do this for you. Regards Click Studios
  23. Hello, Do you have Anonymous Authentication disabled for the site in IIS - this is the only think I can think of where it would present this screen to you, as Passwordstate is detecting your accessing it using a different domain account? You can clear this in the database if you like, by running the following command using SQL Management Studio: USE Passwordstate UPDATE SystemSettings SET MaintenanceModeUserID = '' Rergards Click Studios
  24. But that is just it, I can't get a login prompt to get back in to complete the install. I've tried just the base url https://mysite without the 'error....' part and just give me this below. One thing I forgot to mention in this scenario, I"m doing the form based login and because I don't have an AD where I'm spinning up this test. I tried redirecting the url to different login aspx files but I haven't hit one that works yet so maybe I'm not approaching this the right way.
  25. Hi tburke, Can you let us know what you see on the screen at the moment? If you enabled maintenance mode before the upgrade started, then you need to log back in with the same account to finish the second phase of the upgrade, which is to upgrade the database? So there are two stages to the upgrade: Upgrade all the files Upgrade the database Thanks Click Studios
  1. Load more activity