support

A customer has asked for the ability to copy and link a password into another password list via the API. Quote from customer: "We have a need to generate a record on a particular list, but ideally would like to automate (via the API) to also copy and link that record on another list that a different team references." Regards, Support

Hi Kurt, Sorry we have not had the time to look into this. If you need this feature, did you want to log a new forum post in the Feature Requests area, as this will allow us to prioritize it? Thanks Click Studios

Hi BrianSar, No issues with the responses, that's what we're here for:) Security Groups definitely should be syncing on a regular schedule, and it's the Passwordstate windows service which performs this task. This initial adding in of the security group doesn't use the windows service, which explains why you are seeing it being added into the system. First thing I'd check is to make sure your schedule is set to a reasonably quick sync time, maybe something like every 30 minutes if you like from this area: I would then check the Passwordstate Windows service is running on your web server, and if your accounts do not start to sync after these changes, please let me know and we can investigate further:) Regards, Support.

Hi Everyone, Today we have release build 8706, which includes 12 new updates, and 3 bug fixes. Full changelog can be found here - https://www.clickstudios.com.au/passwordstate-changelog.aspx. Regards Click Studios

Hi All, Today we have released build 8706 of Passwordstate, which includes this new system setting option to further control the Recycle Bin. Thanks for the suggestion, we appreciate it:) Regards, Support

Currently users who have modify rights can also delete passwords from the recycle bin. Once the password is gone from here the history of the password is also permanently deleted. A customer has requested that Modify users cannot delete these passwords from the recycle bin, and this should be the responsibility of the password list admin or the security admin. Regards, Support.

Hi All, Just a quick message to say this is now available if you upgrade to build 8706, which is out now:) Regards, Support

Hi Brett C, Today we released Build 8706 of Passwordstate, which includes this new system setting to allow users to delete Password Lists if they only have Modify rights. Thanks for your suggestion, we appreciate it. Regards, Support

Hello, Sorry, but we do not have a High Availability option for the Self Destruct feature. Regards Click Studios

Awesome - thanks

Hi Brian, Sorry, we do not have those Account Management features built into the API. I guess our initial thoughts about this was it's quite quick to add a Security Group in via the UI, and let the sync happen, compared to scripting this. Regards Click Studios

Hi Guys, bobsthword's request is coming in the next release - due in a couple of days. Regards Click Studios

Hi Sarge, Thanks for trying to assist, but in the case the customer is referring to Host folders, not Password folders. Regards Click Studios

Step 1: Ensure you have prerequisites set up for your web server and hosts, as per this forum post (Once off process) Step 2: Add new Password Record configured as follows: Screen 1: Ensure you configure the below 5 options correctly and enter in the password for the account. If you configure an Expiry Date it will automatically change the password when that date is reached. Screen 2: Confirm you select the appropriate Reset Fortigate Password script. Fortigate accounts can reset their own password, so there is no need to create and assign a privileged account. However if you want to choose one SuperAdmin account to perform the resetting across all your devices, then setting a Privileged account here would be advisable. This privileged account will need to have the same username and password across all your devices. Confirm the Password Reset Schedule is enabled if you want the password to automatically change when the Expiry Date occurs Screen 3: Confirm the Validate Password for Fortigate Account validation script is selected Some More notes about Linux Resets: You also have the option to automate all of this by using a Fortigate Discovery job. These can be set up under the Tools Menu and more information about them can be found under Help -> User Manual -> Passwords -> Tools Menu -> Account Discovery. Regards, Support

Hi Kurt, That is one of the default icons with this editor, but we should be removing it as it's not relevant for basic text formatting i.e. font size, color, etc. And sorry, we cannot allow any HTML to be inserted, due to security reasons - even though only authenticated users have access to the pages in Passwordstate, the security companies had concerns that someone could embed malicious content, links, etc. Regards Click Studios

A customer has requested an offline version of Passwords a that you have access to, in the event you are out at a site with no internet access. The idea being your export some data to a local file on your phone, or tablet etc before you go to site, and you'll be able to search through this file for passwords with out having connectivity to your Passwordstate web site. We haven't thought ourselves about a secure way we can do this yet, but if we get enough interest in this we'll look into it sooner rather than later. If this is something that you think you'll benefit from, please give it a thumbs up here, or any comments you like to help us understand how our community could use a feature like this? Regards, Support

Sorry Kurt - we have not had the time to work on this feature.

Hi Kurt, Sorry, but we can no longer show the HTML icons, as it was recommended by multiple penetration testing companies that we remove it for security reasons. We also do not have the ability to update the guides via the API unfortunately. For you're last enquiry, we do not have the ability to link Password Lists to other Password Lists, so you will need to update each guide as required. Regards Click Studios

Hi Tom, Thanks for your enquiry, but unfortunately at this stage we do not have the ability to customize this screen much. If you go to the screen Administration -> Feature Access -> Remote Sessions tab, you can remove access for either or of the Remote Session Launchers, but that is the extent of the customization we have at this time. Regards Click Studios

Hi Mark, Then only method we have at the moment to bulk update fields or settings on Password Lists, is to link the Password Lists to a Password List Template, where the Template is configured for what you want. If you do not want the Lists to stay linked, you can unlink them after. So this can be done from the screen Administration -> Password List Templates, or if you already have permissions to the Templates, it can be done from the main Passwords menu on the left hand side of the screen. Regards Click Studios

Hi Bernd, Can you take a look at this forum post and let me know if this is what you are after? Or perhaps you've already configured a password record correctly with the passphrase, but maybe it's not working as expected for you? https://www.clickstudios.com.au/community/index.php?/topic/1657-ssh-keys/ Regards, Support

Hi Martin, Due to the way we encrypt the UserID field throughout a lot of the database, you will need to follow the instructions in this document to convert between the two authentication types - https://www.clickstudios.com.au/downloads/version8/Forms_to_AD Migration.pdf Regards, Support

Hi John, When you are outside of the Administration tab, you do not necessarily get Admin rights just because you are a Security Administrator - this is by design. So in the Administration tab, you can apply permissions to Password List Templates, Folders and Password Lists, via each of the relevant menus you see in this section. Take a look at those, and please let us know if you have any further issues. Also please note, from within the Admin area, you cannot grant yourself access to Password Lists, but you can for other users and security groups, Regards Click Studios

Hey Guys, Thanks for the forum post and sorry you're running into this. During the upgrade process, the Passwordstate service and the Gateway service should be stopped right at the beginning, and then restarted as a very last step. We have had several support calls over the years where there was some service monitoring software running on the web server, and half way through the upgrade process the monitoring software restarts the service, breaking the upgrade. Do you think that could be happening in this case? Also, do you have your services configured for any other account other than Local System? Normally we would only recommend Local System or an MSA account if you are using one to be configured on the Passwordstate service. The gateway service should always run under Local System. If you've changed settings on these at all, then maybe the account that is performing the backup does not have permissions to stop the service, and event log entries might confirm this? But yeah in theory, you should not see these errors! Regards, Support

Hi Kurt, No problems at all. We'll certainly consider any optimizations you can suggest. If it's a quick change we'll put it in straight away, but otherwise we might get you to log it in our feature request forum. Sometimes what seems like a simple change can be a few days worth of work:( As for the bulk move option, you are correct and this can only be done from the Admin panel. I guess our thought process for this is it's an operation that wouldn't need to be carried out all that often, so that's why a Security Administrator is tasked with it. Do you think you'll need to do it on an ongoing basis? If so, this might be one for you to log in the Feature Request forum, and we'll do our best to get to it as soon as we can! https://www.clickstudios.com.au/community/index.php?/forum/38-feature-requests/ Regards, Support: