Jump to content


  • Content Count

  • Joined

  • Last visited

  • Days Won


Reputation Activity

  1. Like
    support reacted to cdillon in Migrating from local Auth to AD   
    Sorry I should have been clearer, yes I mean forms to AD.
    Many thanks for the documentation!
  2. Like
    support got a reaction from Jan Liniger in Delete your own private password lists   
    Hi Jan,
    User have Admin rights to their Private Password Lists, so they can do this from the List Administrator's Actions dropdown list just beneath the Passwords grid.

    Click Studios
  3. Like
    support got a reaction from Mordecai in Question of understanding - Creating Nested Password Lists automatically changes permissions on Root Folders   
    Hey Rene,
    Thanks for your post and we think this might be able to be prevented by using our propagating permissions model.  Here is a video which shows a bit more about this:  https://www.youtube.com/watch?v=QBJE_xD185U
    Here's an email that we send to customers occasionally, which may help, happy to work with you on this to make sure you can get something working for your business:
    Setting up the structure of the navigation tree is difficult to advise for, as every business is different, but below I've given an example of how you could build yours assuming you have different departments, like “IT Department” or “HR Department”.  The top level Folder is set to Manual Permissions (blue padlock), and you would give everyone in the IT Department view access to it.  Then each folder nested beneath it is for each team in the department, and these permissions are set to propagate down (green arrow on the folder) and only that team should have access to it.  This just means the Linux team will only see "IT Department -> Linux Team", and the Service Desk will only see "IT Department -> Service Desk" etc.  You could use this example below and possibly duplicate it for each department in your business, HR, Finance, Marketing etc.

    Always use Security Groups if possible.  In the above example for the IT Department structure, you could get away with having 4 Security Groups:
    · IT Department – Add all users to this from the department and give this group View access to the top level IT Department folder
    · Linux Team – Apply this group to only the Linux Folder
    · Service Desk – Apply this group to only the Service Desk Folder
    · Windows Team – Apply this group to only the Windows Folder
     Possibly you could have 2 Security Groups per Team, which gives different permissions:
    · Linux Team Read Only
    · Linux Team Modify 
    · Service Desk Read Only
    · Service Desk Modify
    · Windows Team Read Only
    · Windows Team Modify
    Setting up permissions like this means all you have to do is add a new user to the relevant AD Security Group.  This will sync to Passwordstate automatically and give users appropriate permissions easily.
    Also, Adding a Private Password List, or a Shared Password List inside a folder that is propagating permissions down from the top level will not change the permissions.
    Another tip to help, consider setting this System Setting option under Administration -> System Settings -> Password List Options to allow user with Modify rights the ability to Add Password Lists:

    You could also consider locking down the ability to create folders completely, so to keep your folder structure standard.  This can be done under Administration -> Feature Access-> Menu Access.
    I hope that's enough to get you started, but please let me know if you have any questions at all about any of this?
  4. Like
    support reacted to pongsatorn in SAML Infinite Loop after Windows Update   
    Not sure what Microsoft did to cause this in the Dec security update as well but the missing asp.net session cookie may be related to the upcoming changes to samesite cookie
  5. Like
    support got a reaction from GBS-IT in API add password with GenericField and Description error   
    Thanks, and I can see the issue now - I just tested this also:
    You have your Invoke-RestMethod inside the json object - although you probably have moved this out by now And the GenericField1 and Description fields do not have a double quote before the single quote for your PowerShell variables i.e. should be "GenericField1":"'+$ServerName+'", instead of "GenericField1":'+$ServerName+'", I know it's hard to see in this forum, but cut and paste the text above and you will see what I mean.

    Click Studios
  6. Like
    support reacted to Mordecai in Question of understanding - Creating Nested Password Lists automatically changes permissions on Root Folders   
    Thanks for the quick reply. I will take a closer look at it and test it and get back to you.
  7. Like
    support reacted to OB999 in Database backup   
    Oddly enough it is working now - both the zip and bak files are present.  Over the weekend the scheduled backups ran correctly and a test backup just now resulted in both files being created in the backup folder.  I'll keep an eye on it to ensure both files are being consistently created.  Thanks for your assistance!
  8. Like
    support reacted to sus in Import users from AD to Self Destruct Message   
    Hi Support,
    Thank you:)
  9. Like
    support got a reaction from MikeC in single Password record can be linked to multiple Web Site URLs   
    With this new feature, you do not use Generic Fields for this, instead you use the menu you see below in my screenshot. We hope this helps.

    Click Studios
  10. Like
    support got a reaction from SeSchi in YubiKey Howto   
    Yes, we have information for this in our Manuals under the Help Menu:
    Security Administrator's Manual -> System Settings -> Authentication Options tab User Manual -> Preferences -> Authentication Options tab We hope this helps.

    Click Studios
  11. Thanks
    support got a reaction from Jan-Erik in New import KeePass Powershell script 2018   
    If you need to import all of your data from KeePass into Passwordstate, this is the preferred process due to the below Powershell script keeping the correct format of your KeePass database.  We'd like to thank one of our customers Fabian Näf from Switzerland for writing this script for us.  He did a great job and it's helped out many of our customers.
    This import process will create a Folder with the same name as the XML file you export from KeePass, and it will then replicate the KeePass structure beneath this.
    For customers not familiar with Passwordstate, the equivalent of a "Group" in KeePass is a "Password List" in Passwordstate. We also have the concept of "Folders" which allow you to logically group Password Lists together. If you follow the process below, it should create a Folder with the same name as the XML file you export from KeePass, and it will then replicate the KeePass group structure beneath this.
    Process Start:
    In Passwordstate, identify and note down your System Wide API key from Administration-> System Settings -> API and you will find it under “Anonymous API Settings & Key”.  Ensure you save this page after you generate the new key. Create a Password List Template under the Passwords Menu -> Password List Templates.  On this template please set the following options and then save the template: Disable the option to prevent the saving of password records if they are found to be a “Bad Password” (screenshot 1 below) Uncheck the option so the Password field is not required, and enable the URL field (screenshot 2 below) Identify and note down the TemplateID by toggling the column visibility (screenshot 3 below) In KeePass, open your database and export the contents to a XML file.  This can be executed from File -> Export -> KeePass XML (2.x) Download the script from:  https://www.clickstudios.com.au/downloads/import-keepass-xml.zip Extract this zip file and open with Powershell ISE or the straight Powershell shell, if you prefer You will be prompted to answer 5 pieces of information: The username of an existing Passwordstate user you wish to give Admin rights to all Passwords imported during this process.  Generally you would just enter your own Passwordstate UserID here as you can modify permissions later and and example format for this is halox\lsand Your Passwordstate URL Your System Wide API key The FolderID you wish to create your KeePass structure under.  Enter '0' to create this in the root of Passwords Home, otherwise find the Folder ID of any Folder you like and use this when running the script Your PasswordList Template ID It will ask you to browse to your Exported XML file  
    That’s it, the script will now run through and automatically read all of the information out of the XML file, and import it into Passwordstate.  From here, there are a few other things you might want to consider doing after the script has run successfully:
    You may want to rearrange your folder structure.  Ie possibly you might want to create some new folders for each of your teams, and then drag and drop existing Password Lists/Folders inside of them Once you are happy with your Folder structure, you should start applying permissions to either Password Lists or Folders using the following video as a guide: https://www.youtube.com/watch?v=QBJE_xD185U Best practices are to use Security Groups to apply permissions, instead of individual users, if possible  
    Screenshot 1:

    Screenshot 2:

    Screenshot 3:

  12. Thanks
    support got a reaction from Tyler_S in User selectable MFA option   
    Hi Tyler,

    If we have enough interest from customers for this sort of feature we will definitely consider it. Maybe log a feature request in the 'Feature Request' section of our forums, so others can also vote on it.

    Click Studios
  13. Thanks
    support got a reaction from Tyler_S in User selectable MFA option   
    Hi Tyler,
    Sorry, but we do not have a feature for this. Users can set this on their Preferences screen, or you as a Security Administrator can do this on the User Accounts screen in the Admin area.

    If you have concerns about Internet connectivity, you can always log in with the Emergency Access Login account, and change authentication options. Or, do not use authentication options they rely on the Internet Connectivity i.e. use Google Authentication, or One-Time Passwords as an example.

    Click Studios
  14. Thanks
    support got a reaction from Tom in Right Click Password List > Add Password   
    Hi Tom,
    If you go to your Preference screen in Passwordstate, you can also chose to have the button buttons displayed on the top of the screen. The setting is called 'Show the 'Actions' toolbar on the Passwords pages at the', and you will find it under the Miscellaneous tab.

    Hopefully this will help also.

    Click Studios
  15. Like
    support reacted to Tom in Right Click Password List > Add Password   
    Not sure how I missed this option!
    Thank you for showing me, this is exactly what I was looking for.
  16. Like
    support got a reaction from Haagen IT Partner in Date Picker - Date older then 1980?   
    Hi Tony,
    It seems there is a default value applied to this control, as you can see from this forum post - https://www.telerik.com/forums/raddatepicker-remove-1-1-1980-mindate-default
    We will need to look into how this can be changed.

    Click Studios
  17. Thanks
    support got a reaction from Fabian Näf in Bug with Extension when Searching for Website with Filename in URL   
    Hi Fabian.
    We've found another site we've replicated this with, and we will have a fix in the next few days. It only seems to be certain web servers which cannot handle the trailing /, which is why we have never noticed it before.

    Click Studios
  18. Thanks
    support got a reaction from Fabian Näf in Bug with Extension when Searching for Website with Filename in URL   
    Thanks Fabian, and we can replicate the issue above as well - should be an easy fix, and we'll get back to you as soon as it's done.

    Click Studios
  19. Thanks
    support got a reaction from neonbluehdd in How to have browser extension ignore a specific field?   
    Hi NeonBlueHDD,
    Today we have released a new build of the Chrome browser extension (8812) which fixes a few more issues, which includes better form filling for your sites.  The extension should automatically update in your browser, and this doesn’t require you to upgrade Passwordstate at the same time, although we did release a new build of that today as well.
    If you notice the new browser extension does not automatically fill in the credentials for you, this could be caused a few reasons:
    You have the URL saved as an ignored URL under either the global admin area, or your own personal preferences.  Screenshots of these areas below The field IDs have changed on the website, compared to what you have saved in Passwordstate.  Under these circumstances, if you manually select a credential from the icon overlay, this will fill the forms but it will also update the field IDs in Passwordstate, for all records that have the same URL that you have access to Some websites are built differently, and this can be for many reasons. In this case you can lodge the URL to us here at Click Studios, and we’ll do our best to fix it in a future build.  You can log the faulty URL directly from your Browser Extension now – Please see the third screenshot below


  20. Thanks
    support got a reaction from neonbluehdd in How to have browser extension ignore a specific field?   
    Hi, We're making some improvements to the form filling, and should hopefully have an updated extension available tomorrow - at which time it will automatically upgrade in your browser.

    Please let us know if you have any issues after this upgrade.

    Click Studios
  21. Like
    support got a reaction from Beau P. in Browser Extension - Issue with latest build   
    Hi Beau,

    Thanks for letting us know, and for your kind words about the new extension

    Have a great weekend.

    Click Studios
  22. Like
    support got a reaction from Beau P. in Browser Extension - Issue with latest build   
    Hello Beau,

    I'm so sorry - I misread your original post. We haven't had any other reports of this, so we're not sure of the cause at this stage. Could you try the following to see if it will help:
    Restart IIS, then try logging into Passwordstate again Clear your cache in Chrome, and then try again Go to the Help Menu in Passwordstate, open the Web API Documentation page, and then open the Standard Documentation - does this load okay And can you check if this is working for any other users?
    Click Studios
  23. Like
    support got a reaction from enigmatic in User APIKey   
    Hello enigmatic,

    Other customers have the WinAPI from Linux machines - here is the forum post discussing it - https://www.clickstudios.com.au/community/index.php?/topic/2387-can-winapi-be-used-via-a-linux-shell-script/
    We hope this helps.

    Click Studios
  24. Like
    support got a reaction from Sarge in API for (global) addressbook and self destruct message portal   
    Hi All,
    Just letting you know this is now available as of build 8782.

    Click Studios
  25. Like
    support reacted to SeSchi in Update not working   
    Good hint with the admin group
    Works now.