Jump to content

All Activity

This stream auto-updates     

  1. Today
  2. dnewsholme

    Issue with Generate Password API

    I've tried that too. Using the following GET uri query string: /winapi/generatepassword/?IncludeAlphaSpecial=true&IncludeWordPhrases=false&minLength=12&maxLength=20&lowerCaseChars=true&upperCaseChars=true&numericChars=true&higherAlphaRatio=true&ambiguousChars=true&specialChars=true&specialCharsText=!#$%+-_=^&bracketChars=true&bracketCharsText={}()&NumberOfWords=0&MaxWordLength=0&PrefixAppend=P&SeparateWords=N&ExcludeChars=*&GeneratePattern=false&Pattern=null&Qty=1 The resultant password i got was: rstrut-pb9Lej Which shouldn't happen as include words and word length were set to false and 0 respectively.
  3. support

    Migrating to New Domain

    Hello, Sure, we understand. You can still do the migration in V7, but it's just a little more work - as you have to clone permissions one user account at a time, instead of being able to to a bulk clone of permissions. If you can contact us via our support page, we can email you the migration document. Regards Click Studios
  4. Hi Everyone, Today we have release build 8537, which includes 11 new updates, and 7 bug fixes. Full changelog can be found here - https://www.clickstudios.com.au/passwordstate-changelog.aspx. Regards Click Studios
  5. Hi Jim, Just a quick update to this - We are releasing a new build of Passwordstate today, build 8537, which addresses this issue. You can now save a Google Authenticator for the main Passwordstate web site, and also for the Password Reset Portal. Thanks for bringing this to our attention, we really appreciate it:) Please upgrade when you get a chance! Regards, Support
  6. support

    Multiple Authentication Types

    Just a quick update to this - we are releasing a new build of Passwordstate today, build 8537, which addresses this issue. Thanks again Rob for bringing it to our attention. Regards, Support
  7. Last week
  8. If you are experiencing slow performance of your Passwordstate website, please put the answers to these following questions in an email and send it to support@clickstudios.com.au. There are different factors that can cause poor performance in different areas of the product, so this information will help troubleshoot the issue. Questions to Answer: Where is your Passwordstate database in relation to the Passwordstate web server? ie are they on the same LAN, across a WAN or possibly hosted in something like Azure or AWS? Where are your clients accessing Passwordstate from? Same LAN, across a WAN etc? If you RDP into your Password web server, and launch Passwordstate inside that session, does this speed things up? Can you explain what pages are slow to access? ie is it when you first log into the system and the navigation tree takes a long time to render? Or is it when you click on a Password List as an example? What sort of times are you experiencing when loading pages? 5 seconds? 10 seconds etc? Are you running AV on your web server? If so, which brand? How much free memory do you have on your web and database server? If your users are seeing poor performance when opening a Password List, can you find out how many item they have configured to show in the grid? Screenshot below of this: Regards, Support.
  9. afrench

    Migrating to New Domain

    We are limited with our upgrade at the moment as we are still running SQL server 2008R2. I have requested that this is upgraded to a new version but we are budget limited. The decision has been made to stay at v7 of PasswordState for now and not install SQL Express to enable an upgrade.
  10. Below are the areas in which you'll need to look to remove an MSA account from your Passwordstate set up. From time to time we've seen customers with corrupt accounts causing issues, so we recommend removing the corrupt account and adding in a new one. Remove it from the Windows Service Remove it from the Application Pools Remove from the web.config file Remove from the SQL Server Services Ensure the Passwordstate folder and everything beneath it as Modify NTFS permissions for the NETWORK SERVICE Account The Passwordstate service Logon tab will be greyed out if it is configured previously as an MSA account. To "Un-Grey" it which will allow you to choose the local system account again, runt he following CMD command as administrator sc managedaccount "Passwordstate Service" false Regards, Support
  11. support

    Issue with Generate Password API

    Hello, I you specify the parameters manually like this, instead of using an existing Password Generator Policy to base it off, then you need to specify all parameters here - which are documented in the API documentation for you. Can you please try specifying all parameters, and report back here if you are still having issues? Thanks very much. Regards Click Studios
  12. +1 for the self destruct messages this would be great for resetting and sharing user passwords.
  13. Can we get a search function for documents similar to how we can search for passwords? Currently when you upload a document via the API you get an ID back but after that there is no way to search for the document you uploaded to retrieve it.
  14. I'm struggling with the API for generating passwords. I'm looking to generate a password of the length 16 random characters and without a word. However it seems no matter what parameters i pass i get a 12 character password with a word such as: scalp-6Vk%z I'm performing a get with the following parameters. /winapi/generatepassword?IncludeWordPhrases=false&minLength=16&maxLength=16 Infact the only parameter which seems to work is qty=3 which will generate 3 of the same 12 character with a word passwords. I'm running V8.5 (Build 8519)
  15. support

    Migrating to New Domain

    Hello afrench, Before the migration, we would recommending first upgrading to version 8 - we have some features in V8 which makes it easier to clone permissions. To upgrade, you can follow anyone of the methods described in this document - https://www.clickstudios.com.au/downloads/version8/Upgrade_Instructions.pdf Once done, can you contact us via our support page here https://www.clickstudios.com.au/support.aspx and we can provide some instructions for the migration. Thanks very much. Regards Click Studios
  16. afrench

    Migrating to New Domain

    We are planning a migration to a new domain and want to make sure we have everything planned for migrating Passwordstate. The key points Passwordstate is currently using manual AD auth Users groups are based on AD groups We don't currently implement password resets New hosts are identified by Passwordstate using a proxy account in the domain A trust exists between domains User accounts will NOT be migrated, new users exist for all users and desktop profiles will be copied over. We will be migrating desktops first and then servers once all desktops are finished. We can migrated services before a server is migrated though where possible. What is the best method of migrating and is there anything that could cause issues? Thanks
  17. Sarge

    Freeipa Users

    Passwordstate with LDAP integration is something I requested some time ago, under tracking ID PS-1992. Assuming theres enough demand for it, it would allow integration with IPA for authentication and host discovery. IPA is a bundle of tools, ldap being one of the tools it bundles. We also use IPA for our Linux servers authentication. Assuming wkleinhenz would like this as a feature request, I'd have to +1 it.
  18. As of Passwordstate build 8388, we have introduced a new feature where you can upgrade your High Availability instances directly from within the UI of the primary server. Below is an example of this, and you'll see that in our current development set up our nodes are red, indicating that are not polling successfully: To troubleshoot why these polling health icons are red, please see the following: Active/Passive Mode: If you are using Active/Passive HA, the the Passwordstate service on the secondary server will make a call on a regular schedule to the primary site API. If it can contact it, it will show a successful green icon. Things to check: When logged into to your Primary Passwordstate site, check the URL under Administration -> System Settings -> Miscellaneous is correct. Ensure the Passwordstate Service on the secondary web server is running From your Secondary server, perform a Powershell open port test back to your primary website to ensure no firewalls are blocking access. Example is test-netconnection passwordstate.com.au -port 443 Look in the Application Event logs for any errors, and if you find any, but can't work out what they are, submit them to Click Studios support for review (support@clickstudios.com.au) Active/Active Mode: Active/Active mode works slightly different, and instead it will write the date, time and build number directly to the secondary database, and then when replication occurs this will be displayed in the primary Server UI Things to check: Passwordstate service on the secondary web server is running Database replication is working Look in the Application Event logs for any errors, and if you find any, but can't work out what they are, submit them to Click Studios support for review (support@clickstudios.com.au) Hope this helps! Regards, Support:)
  19. Earlier
  20. Hi Jim, Thanks for bringing this to our attention, and we will need to change the Issuer label here so we do not have conflicts like this - we did overlook this when we developed the Portal, thinking most of the users of the Portal would not be using Passwordstate. We will post back here once a new build of the Portal is available, which would be in about a week or two. If this is urgent, possibly you could use two different Apps i.e. the one supplied by Google, or Sophos Authenticator. Regards Click Studios
  21. support

    Health check URL

  22. sysadmin-z

    Health check URL

    Thanks, that was simple enough.
  23. support

    Health check URL

    Hi Syasadmin-z. You could use our API documentation page for this - so your normal URL, with /API appended to the end. Regards Click Studios
  24. sysadmin-z

    Health check URL

    Hey, I am curious if there is a healthcheck URL. I have Passwordstate sitting behind a load balancer and having an issue since health checks to / respond with a 302 moved to /logins/loginadan.aspx?. Yet when I try setting the health check to /logins/loginadan.aspx? I receive a 302 moved to /. This is somewhat confusing and may be an IIS issue but I am not sure since I do not work with IIS on a day to day basis. Strangely enough sending a request to /someboguslocation results in a 200 which may be more confusing than the previous 302s. So my question stands, is there a standard health check URL that you can hit to receive a 200 stating all systems are alive and well? Thanks.
  25. Hey, I stumbled upon a strange behavoir. Google Authenticator profile for the reset portal overrides the existing one in my Microsoft 2FA app if an authenticator instance already exists- which is the one I setup for the pwstate instance. Is this a known issue, or did I do something wrong? Steps to reproduce: - Setup a user in passwordstate and setup Manual AD + google auth on - Let the user login and create and add an account in the MS 2fa app - Set up verification method to Google Auth in Password reset portal settings for the user - Enroll in password reset portal with that that user - Scan the QR code and voila. Your existing secret is overriden and you can't login to passwordstate instance anymore. What am I doing wrong here? Cheers, J
  26. support

    Freeipa Users

    Hello wkleinhenz, Thanks for your enquiry. We've just had a look at what freeipa is, as we've never heard of this before. Unfortunately our software is not designed to work with this, and we only currently support Microsoft Active directory for LDAP. Sorry our software is not able to help with this. Regards Click Studios
  27. wkleinhenz

    Freeipa Users

    Currently i manage a fully Linux environment that uses freeipa for ldap and ive run into 3 issues First , the account discovery works using an freeipa account but doesnt seem to correctly pull the found users passwords second, unless im doing something wrong i am unable to use the host discovery option to connect to freeipa lastly, the account discovery misses the freeipa users and thus makes it hard to use the ssh connection option as the ldap users are the only true non-service and non-root accounts so with these issues i was wondering if there has been any thought into better supporting non windows ldap for host/account discovery Thanks
  28. bobstheword

    Check in automatically length of time

    Thanks, yes the exclusive check in/out feature is the feature I was referring to but the maximum length of time for "Check in Automatically" is 23 hours 55 minutes. It would be nice if feature also included a number of days so "Check in Automatically" could be set for 1 week, for example.
  1. Load more activity
×