Jump to content

Leaderboard


Popular Content

Showing content with the highest reputation since 08/09/19 in all areas

  1. 2 points
    Hi all, I've some websites on which the Passwordstate browser extension is asking me all the time if I'd like to save a password. This happens e.g. when there are different password fields on a website, like when you manage users with a password field, this will happen all the time. After every form submit Passwordstate is asking if the password should be saved. This is very annoying. If you click "Ignore" (screenshot below), it leads to prevent Passwordstate from filling the form as well. There's currently no way from stopping the browser extension to ask for saving passwords and still let it fill the form. I really would like, if clicking on "ignore" would only prevent asking for saving passwords, but would not stop filling the form. For me it really doesn't even make sense to ask at this point about stop filling forms and I think this is not really obvious as well (that clicking on this ignore button, after entering credentials, will lead to stop filling of other credentials in the form on this site). I guess it's not only confiusing for me and I guess that many people unintended stopped the browser extension from filling the form by clicking on ignore there. From my opinion these are two completely different things: 1. Prevent Passwordstate from filling forms: I think it's good to have this as a user preference setting as it is right now. 2. Prevent Passwordstate from asking about saving a password: I think this should be handled in the browser extension. So here's my actual feature request: 1. Clicking on "ignore" on the screenshot showing above should not stop Passwordstate from filling any forms. Instead it should just stop asking for saving passwords. 2. I really would wish to have something like a checkbox or a switch displayed in the browser extension. There I could control if I would like have Passwordstate asking me to save passwords on the current site (should be enabled by default). A little mockup below, sorry for bad paint skills ;-) If you like this feature request, please post a "+1", highly appreciated! All the best, Fabian
  2. 2 points
    Hi All, Just letting you know this is now available as of build 8782. Regards Click Studios
  3. 1 point
    support

    Configurable SSH timeout

    Hi Buckit, Could you have a look at the options on the screen Administration -> System Settings -> Hosts tab. Hopefully the "Host Connectivity Timeout Settings" will help with this. Regards Click Studios
  4. 1 point
    Hi Ralph, There is a System Setting which will allow this, please let us know if this doesn't help? Regards, Support
  5. 1 point
    Heikki H.

    TOTP support for browser extension

    Would be nice if the browser extension could also copy TOTP code if the password item has that configured.
  6. 1 point
    Achim

    Passwordstate app

    Hi, do you have plans for creating an app for passwordstate which has more features than the mobile website? It would be great if a real app would exist with the possibility to create new passwords and edit them. Another awesome feature would be the offline availability of passwords. Kind regards Achim
  7. 1 point
    If you need to import all of your data from KeePass into Passwordstate, this is the preferred process due to the below Powershell script keeping the correct format of your KeePass database. We'd like to thank one of our customers Fabian Näf from Switzerland for writing this script for us. He did a great job and it's helped out many of our customers. This import process will create a Folder with the same name as the XML file you export from KeePass, and it will then replicate the KeePass structure beneath this. For customers not familiar with Passwordstate, the equivalent of a "Group" in KeePass is a "Password List" in Passwordstate. We also have the concept of "Folders" which allow you to logically group Password Lists together. If you follow the process below, it should create a Folder with the same name as the XML file you export from KeePass, and it will then replicate the KeePass group structure beneath this. Process Start: In Passwordstate, identify and note down your System Wide API key from Administration-> System Settings -> API and you will find it under “Anonymous API Settings & Key”. Ensure you save this page after you generate the new key. Create a Password List Template under the Passwords Menu -> Password List Templates. On this template please set the following options and then save the template: Disable the option to prevent the saving of password records if they are found to be a “Bad Password” (screenshot 1 below) Uncheck the option so the Password field is not required, and enable the URL field (screenshot 2 below) Identify and note down the TemplateID by toggling the column visibility (screenshot 3 below) In KeePass, open your database and export the contents to a XML file. This can be executed from File -> Export -> KeePass XML (2.x) Download the script from: https://www.clickstudios.com.au/downloads/import-keepass-xml.zip Extract this zip file and open with Powershell ISE or the straight Powershell shell, if you prefer You will be prompted to answer 5 pieces of information: The username of an existing Passwordstate user you wish to give Admin rights to all Passwords imported during this process. Generally you would just enter your own Passwordstate UserID here as you can modify permissions later and and example format for this is halox\lsand Your Passwordstate URL Your System Wide API key The FolderID you wish to create your KeePass structure under. Enter '0' to create this in the root of Passwords Home, otherwise find the Folder ID of any Folder you like and use this when running the script Your PasswordList Template ID It will ask you to browse to your Exported XML file That’s it, the script will now run through and automatically read all of the information out of the XML file, and import it into Passwordstate. From here, there are a few other things you might want to consider doing after the script has run successfully: You may want to rearrange your folder structure. Ie possibly you might want to create some new folders for each of your teams, and then drag and drop existing Password Lists/Folders inside of them Once you are happy with your Folder structure, you should start applying permissions to either Password Lists or Folders using the following video as a guide: https://www.youtube.com/watch?v=QBJE_xD185U Best practices are to use Security Groups to apply permissions, instead of individual users, if possible Screenshot 1: Screenshot 2: Screenshot 3: Regards, Support
  8. 1 point
    Achim

    Feature Request: Available languages

    Hi, we just bought the passwordstate enterprise edition for our company and are very satisfied. Because we are a german company i would like to ask if there are any plans for adding the possibility to change the language to for example german. This would be a great feature and would help us to find more user acceptance. Thank you. Kind regards Achim
  9. 1 point
    Hello Fadler, There are no issues from a Passwordstate perspective - we support SQL Server 2012 and above. The only thing to be aware of is the 'Compatibility Level' of your database - we recommend setting this to 2017 before you backup your database and move it - screenshot below of this setting. Regards Click Studios
  10. 1 point
    Hi Mordecai, Thanks for your email to our support inbox, we'll liaise with you there/. We think this might be data related but if it is an issue with Passwordstate, we'll patch it in the next build and will report back here what the issue was. Regards, Support
  11. 1 point
    Got it, thanks!
  12. 1 point
    support

    A couple management questions.

    Hi cvg, We do not have an option to move a password record from a shared password list to t private password list. This is for security reasons, as a lot of customers expressed concerns with allowing users to store company passwords in private lists, as they are not visible to management. This was just one way to prevent that from happening. Are you referring to the Browser Extensions by any chance? So a user has accidently saved a website password into a shared list, using our Browser Extension? If so, and if they are using the latest build of the extension, they can set the default password list from their personal preferences: Regards, Support
  13. 1 point
    Hi, It would be great if the API had a method to create, delete and edit templates (incl. custom fields content and values). We would like to automate most of the work in PasswordState as much as possible and reasonable. We have some special template settings and we use all generic fields, so if we want to change the contents of the generic fields or the password list settings, we would like to change this via the API/WinAPI and our CI/CD pipelines. For example, we have a "Customers" field that contains all customer names. This list is edited from time to time and must be changed in all password lists. This is not so nice to do manually with a lot of lists and the error rate (typos). Please vote for this feature request and stay healthy. Thanks, René
  14. 1 point
    We'd like to use the Microsoft Authenticator App for PasswordState MFA, however in its current state PasswordState will not send push notifications via the app easily. This is working for Duo MFA and it would be great to pass on the same feature to customers who use Microsoft Authenticator.
  15. 1 point
    Hi Mordecai, Unfortunately there's no way to currently do this, so please feel free to log a feature request and if it gets enough interest we'll include it in a future build: https://www.clickstudios.com.au/community/index.php?/forum/38-feature-requests/ Regards, Support
  16. 1 point
    Emad

    report on Emypty password list

    thank you so much
  17. 1 point
    cdillon

    Migrating from local Auth to AD

    Sorry I should have been clearer, yes I mean forms to AD. Many thanks for the documentation!
  18. 1 point
    Hi Jan, User have Admin rights to their Private Password Lists, so they can do this from the List Administrator's Actions dropdown list just beneath the Passwords grid. Regards Click Studios
  19. 1 point
    Not sure what Microsoft did to cause this in the Dec security update as well but the missing asp.net session cookie may be related to the upcoming changes to samesite cookie https://support.microsoft.com/en-au/help/4522904/potential-disruption-to-customer-websites-in-latest-chrome https://devblogs.microsoft.com/aspnet/upcoming-samesite-cookie-changes-in-asp-net-and-asp-net-core/
  20. 1 point
    Hey Rene, Thanks for your post and we think this might be able to be prevented by using our propagating permissions model. Here is a video which shows a bit more about this: https://www.youtube.com/watch?v=QBJE_xD185U Here's an email that we send to customers occasionally, which may help, happy to work with you on this to make sure you can get something working for your business: Setting up the structure of the navigation tree is difficult to advise for, as every business is different, but below I've given an example of how you could build yours assuming you have different departments, like “IT Department” or “HR Department”. The top level Folder is set to Manual Permissions (blue padlock), and you would give everyone in the IT Department view access to it. Then each folder nested beneath it is for each team in the department, and these permissions are set to propagate down (green arrow on the folder) and only that team should have access to it. This just means the Linux team will only see "IT Department -> Linux Team", and the Service Desk will only see "IT Department -> Service Desk" etc. You could use this example below and possibly duplicate it for each department in your business, HR, Finance, Marketing etc. Permissions: Always use Security Groups if possible. In the above example for the IT Department structure, you could get away with having 4 Security Groups: · IT Department – Add all users to this from the department and give this group View access to the top level IT Department folder · Linux Team – Apply this group to only the Linux Folder · Service Desk – Apply this group to only the Service Desk Folder · Windows Team – Apply this group to only the Windows Folder Possibly you could have 2 Security Groups per Team, which gives different permissions: · Linux Team Read Only · Linux Team Modify · Service Desk Read Only · Service Desk Modify · Windows Team Read Only · Windows Team Modify Setting up permissions like this means all you have to do is add a new user to the relevant AD Security Group. This will sync to Passwordstate automatically and give users appropriate permissions easily. Also, Adding a Private Password List, or a Shared Password List inside a folder that is propagating permissions down from the top level will not change the permissions. Another tip to help, consider setting this System Setting option under Administration -> System Settings -> Password List Options to allow user with Modify rights the ability to Add Password Lists: You could also consider locking down the ability to create folders completely, so to keep your folder structure standard. This can be done under Administration -> Feature Access-> Menu Access. I hope that's enough to get you started, but please let me know if you have any questions at all about any of this? Regards, Support
  21. 1 point
    OB999

    Database backup

    Oddly enough it is working now - both the zip and bak files are present. Over the weekend the scheduled backups ran correctly and a test backup just now resulted in both files being created in the backup folder. I'll keep an eye on it to ensure both files are being consistently created. Thanks for your assistance!
  22. 1 point
    Hi Support, Thank you:)
  23. 1 point
    Graham

    Passwordstate app

    if a user is offline... say on a plane and has a need for a password to access something on their pc... an app would be the correct way to go... Web is only as good as your internet access.. if the app just downloaded and ecnrypted the pwd that user has access to it would reduce the risk.
  24. 1 point
    Hi Guys, We might look into this for version 9 of Passwordstate - which we're currently working on. Regards Click Studios
  25. 1 point
    Hello, Actually when enabling the notifications we receive both for our own actions or other actions in a shared password list. I would like to be able to remove notifications for my own actions because I don't need to be notified that I did an action but only want to know when others use the password list. Ideally we should be able to select this option by notification so we can keep some notifications for our own actions as to detect suspicious activity but remove it for other more banal notifications. Thanks in advance to consider the request. Kind Regards,
  26. 1 point
    Tom

    Right Click Password List > Add Password

    Not sure how I missed this option! Thank you for showing me, this is exactly what I was looking for.
  27. 1 point
    support

    User selectable MFA option

    Hi Tyler, If we have enough interest from customers for this sort of feature we will definitely consider it. Maybe log a feature request in the 'Feature Request' section of our forums, so others can also vote on it. Regards Click Studios
  28. 1 point
    support

    Right Click Password List > Add Password

    Hi Tom, If you go to your Preference screen in Passwordstate, you can also chose to have the button buttons displayed on the top of the screen. The setting is called 'Show the 'Actions' toolbar on the Passwords pages at the', and you will find it under the Miscellaneous tab. Hopefully this will help also. Regards Click Studios
  29. 1 point
    support

    User selectable MFA option

    Hi Tyler, Sorry, but we do not have a feature for this. Users can set this on their Preferences screen, or you as a Security Administrator can do this on the User Accounts screen in the Admin area. If you have concerns about Internet connectivity, you can always log in with the Emergency Access Login account, and change authentication options. Or, do not use authentication options they rely on the Internet Connectivity i.e. use Google Authentication, or One-Time Passwords as an example. Regards Click Studios
  30. 1 point
    Hi, I played a lot with the PS Remote Session Launcher and it's integration with applications via the PSLauncher.ps1 script. There is, as of yet, 5 choices only (RDP, SSH, TeamViewer, Telnet and VNC) The Telnet one, in my opinion, can be dropped because Telnet shouldn't be used in any way. Here is the improvement proposal: These 5 choices should be at least 10. (and an infinity if possible, like a + button to add a new one) There is plenty of applications that uses passwords and that are cli compatible to launch. (Like the many VPN clients out there) The choices should be fully customizable. The 5 defaults could be pre-configured The 5 (or more) following could be user defined The PSLauncher.ps1 script doesn't need any modification since it already is customizable. This comes from our usage, which is RDP, SSH, Teamviewer and VPN clients mostly. Since the VNC and Telnet options are not used they have been reconfigured in the PSLauncher.ps1 script to be mapped on 2 VPN clients. Have a nice day!
  31. 1 point
    Cbalbuena

    kubernetes

    Does anyone have any information on leveraging passwordstate with kubernetes
  32. 1 point
    Hi Fabian. We've found another site we've replicated this with, and we will have a fix in the next few days. It only seems to be certain web servers which cannot handle the trailing /, which is why we have never noticed it before. Regards Click Studios
  33. 1 point
    Thanks Fabian, and we can replicate the issue above as well - should be an easy fix, and we'll get back to you as soon as it's done. Regards Click Studios
  34. 1 point
    Hi NeonBlueHDD, Today we have released a new build of the Chrome browser extension (8812) which fixes a few more issues, which includes better form filling for your sites. The extension should automatically update in your browser, and this doesn’t require you to upgrade Passwordstate at the same time, although we did release a new build of that today as well. If you notice the new browser extension does not automatically fill in the credentials for you, this could be caused a few reasons: You have the URL saved as an ignored URL under either the global admin area, or your own personal preferences. Screenshots of these areas below The field IDs have changed on the website, compared to what you have saved in Passwordstate. Under these circumstances, if you manually select a credential from the icon overlay, this will fill the forms but it will also update the field IDs in Passwordstate, for all records that have the same URL that you have access to Some websites are built differently, and this can be for many reasons. In this case you can lodge the URL to us here at Click Studios, and we’ll do our best to fix it in a future build. You can log the faulty URL directly from your Browser Extension now – Please see the third screenshot below Regards, Support
  35. 1 point
    Hi, We're making some improvements to the form filling, and should hopefully have an updated extension available tomorrow - at which time it will automatically upgrade in your browser. Please let us know if you have any issues after this upgrade. Regards Click Studios
  36. 1 point
    Hi Beau, Thanks for letting us know, and for your kind words about the new extension Have a great weekend. Regards Click Studios
  37. 1 point
    Hello Beau, I'm so sorry - I misread your original post. We haven't had any other reports of this, so we're not sure of the cause at this stage. Could you try the following to see if it will help: Restart IIS, then try logging into Passwordstate again Clear your cache in Chrome, and then try again Go to the Help Menu in Passwordstate, open the Web API Documentation page, and then open the Standard Documentation - does this load okay And can you check if this is working for any other users? Thanks Click Studios
  38. 1 point
    support

    User APIKey

    Hello enigmatic, Other customers have the WinAPI from Linux machines - here is the forum post discussing it - https://www.clickstudios.com.au/community/index.php?/topic/2387-can-winapi-be-used-via-a-linux-shell-script/ We hope this helps. Regards Click Studios
  39. 1 point
    SeSchi

    Update not working

    Good hint with the admin group Works now. Thanks!
  40. 1 point
    support

    Update not working

    Hi Sebastian, Under Administration -> Backups and Upgrades -> Settings, you will have previously set a domain account on this screen, and this is the account that needs to have permissions to write to that file. It does a bunch of other stuff too, like deleting old files and copying in new ones, and the easiest way to fix this is to make it a member of the local administrators group on your web server. If you start the upgrade again, hopefully it goes through this time, if everything is ok. If you run into any issues, click the Test Permissions button on that Backup and Upgrades page and this will give you more information. Password may be incorrect, or locked out etc. Hope this helps, Support.
  41. 1 point
    The site in question is powerdms.com and we currently have a subscription. I'd be happy to reproduce. I modified my url setting to be the root of the domain, and a single ignore entry prevents the message from reappearing, but it also will no longer autofill now. EDIT: Weird - I was trying to reproduce, and now through a series of adding the site, relogging in, logging out, and deleting the site - I can't get the prompt to pop up again. I'll let you know if this comes back.
  42. 1 point
    cjohnson

    User getting Access Denied

    I figured it out, she was disabled in Passwordstate.
  43. 1 point
    Well, that was easy. Look forward to the new features, looks like quite the overhaul.
  44. 1 point
    You're right. It works now! Thanks :)
  45. 1 point
    Hi, Thanks for reporting this, and we believe we know the cause of this. If you edit the properties of this Password List, and then click the 'Save' button, does this resolve it for you? We believe the Password List itself might still be configured to use the user's personal Password Generator Policy, but it's not showing because you've enabled the System Setting to hide it. This is possibly the case also for any Password List Templates, which you might be using as a basic for copying settings when creating new Password Lists. So you might want to open all Password List Templates as well, and click the 'Save' button. This can be done from the screen Administration -> Password List Templates. Regards Click Studios
  46. 1 point
    Azkabahn

    Linking Passwords in the API

    +1 we use PasswordState as part of our CI/CD pipeline, so this would be nice to have feature as well
  47. 1 point
    Is it possible to mass grant permission to multiple credentials or do you have to grant a permission for each single Linked Credential? For our PasswordState instance we would like to grant multiple users access to multiple servers, but to se this up for each linked credentials is very maintenance heavy, and we have to revise every linked credential every time we get a new member.
  48. 1 point
    support

    Have I Been Pwned offline access

    We've had requests from another thread to make the Have I Been Pwned database available for offline access, so Passwordstate does not need to reach out the the internet to do the checks. This database is somewhere around the 40 gig mark in size. We'd need to find a way to search through 500 million records quickly if we were to implement this, but just putting it out there as a possible feature request. Please upvote if you'd like this investigated. Regards, Support.
  49. 1 point
    Hey there! Here's my updated version with some new features Fixes: UTF8, Check for Folder, htmlsafe notes, a litttle bit errorhandling New: Importing additional KeePass Fields with customized mapping New: Adding not handled additional fields to the Notes field New: Support for File-Attachments New: Support for enabled rights propagation and Linked Templates (not setting rights to an admin) Due to the increased number of options you are not longer prompted for them, instead fill in all options at the top of the config file (see also below) Thanks to Fabian for the initial version. Kind Regards Folke The configuration section looks like this Import-KeePass-XML-2018-08-14.ps1
  50. 1 point
    Thanks, and I can see the issue now - I just tested this also: You have your Invoke-RestMethod inside the json object - although you probably have moved this out by now And the GenericField1 and Description fields do not have a double quote before the single quote for your PowerShell variables i.e. should be "GenericField1":"'+$ServerName+'", instead of "GenericField1":'+$ServerName+'", I know it's hard to see in this forum, but cut and paste the text above and you will see what I mean. Regards Click Studios
×
×
  • Create New...