Jump to content


  • Content Count

  • Joined

  • Last visited

  1. Hello, When running "Backup Now" the backup fails when trying to verify the compressed archive. The file extension it's looking for is .bak however the actual file is called .zip. Running version: V8.5 (Build 8573) Error: "Failed manual backup performed by [security administrator] on Web Server '[hostname]'. Error = Cannot open backup device 'C:\Backup\Passwordstate20190114150421.bak'. Operating system error 3(The system cannot find the path specified.). BACKUP DATABASE is terminating abnormally." Verbose Error: 2019-01-14 15:04:40 Manual Backup Error executing Manual Backup. Error data = Cannot open backup device 'C:\Backup\Passwordstate20190114150421.bak'. Operating system error 3(The system cannot find the path specified.). BACKUP DATABASE is terminating abnormally. Error 2019-01-14 15:04:40 Manual Backup Starting backup of database Information 2019-01-14 15:04:40 Manual Backup Finished zipping Of all web files Information 2019-01-14 15:04:23 Manual Backup Starting zipping Of all web files from path c:\inetpub\Passwordstate\ Information 2019-01-14 15:04:23 Manual Backup Starting Passwordstate Windows Service Information 2019-01-14 15:04:22 Manual Backup Stopping Passwordstate Windows Service Information 2019-01-14 15:04:22 Manual Backup Starting Manual Backup on Web Server '[hostname]'. Information
  2. Hi, It would be nice to have the possibility to set a custom header and footer for all Email Templates. At the moment we have a custom footer which I have to manually configure for each template and also have to modify for all the new templates being added. The header and footer would still need to be able to use placeholder text like [SiteURL]. An extra option to configure these outside of each template would be much appreciated.
  3. Christopher

    [API] Get installed version and build

    Well at the moment it's needed for our monitoring setup to check if there is an update available and alert if it's getting too far behind. The monitoring setup would also use this to check if the API is functioning correctly. It's also needed for our offline upgrade script to check if an update is necessary before continuing, as it is now it will perform the update process regardless. The last part of the script is notifying a Security Admin that they need to complete the setup by logging in to the web interface and perform the database update. Regards Christopher
  4. Christopher

    [API] Get/Set Maintenance mode

    Could this also be used to set maintenance mode? If I were to add a UserID into that field would that also set maintenance mode to true? What would happen if I did this and other users were online?
  5. Christopher

    [API] Get installed version and build

    Thank you for your reply and workaround. We've worked in a pretty extensive API automation in our environment so would like to not have to setup a read-only SQL account for that specific task but I'll wait to see if there is interest in this.
  6. Christopher

    [API] Get/Set Maintenance mode

    Hi, Is it possible to add a get and set maintenance mode API feature? Best regards Christopher
  7. Hi, Is it possible to add an API call to return the current installed version and build number? Best regards Christopher
  8. Christopher

    [Web Site Allowed IP Ranges] IPv6

    Ok, thanks for clearing that up. Since this was a necessity for our environment this is how I solved it if anyone else is in need of the same. 1. Install the "IP Address and Domain Filtering" role on your IIS server 2. Open the IIS Manager and select your Passwordstate site, a new icon should be available 3. On the menu to the right select "Edit Feature Settings..." and set "Access for unspecified clients:" to Deny and "Deny Action Type:" to whatever fits your needs. 4. On the menu to the right select "Add Allow Entry..." and select "IP Address range:" here you can specify your allowed IPv4 and IPv6 ranges. Hope this can help someone else in need.
  9. Hi, It seems that the Web Site Allowed IP Ranges and API Allowed IP Ranges does not support IPv6 addresses or IPv6 CIDR. Is this by design or is it a bug? Best regards Christopher
  10. Christopher

    SAML2 Attribute and Claim Types

    Hi and sorry for the late reply! In my opinion the first choice is the best one, being able to select which value to validate against is much better for control. The SQL WHERE option would still cause us issues since it would match the first email it finds when multiple accounts have the same email address, email address can be the same for multiple AD accounts where SamAccountName and UserPrincipalName are unique to specific accounts. Best Regards Christopher
  11. Hi, It would be helpful to be able to use something other than E-Mail-Addresses and Name ID as attribute and claim type when using SAML2 logon, more specifically be able to use the attribute UserPrincipalName or even better the SamAccountName attribute. In our PasswordState setup we use different accounts for different security privileges for the same person, for example, when doing regular IT work you logon with your standard user account which has permissions for password lists but when performing SysAdmin work you logon with your SysAdmin account. Both of these accounts are AD accounts with different SamAccountName/UserPrincipalName but share the same firstname.lastname@domain.tld email address. This makes it impossible for us to use SAML2 at the moment as PasswordState can't differentiate between these two accounts and logs you on to only one of them. It would also be nice to be able to logon to a local PasswordState account (other than emergency) when using SAML2 logon, if for example the ADFS is unavailable or something similar.
  12. Christopher

    WinAPI - Auditing - 500 Errors

    Hi, We're trying to debug some automated scripts which are using WinAPI to create passwords and recieving a [500 Error] from the webserver and the following response [{"errors":[{"message":"Invalid API Call"},{"phrase":"Error = Object reference not set to an instance of an object."}]}]. While debuging this we noticed that these events are not logged in the Audit log of PasswordState. Is it possible to add this event to Auditing and maybe someway of enabling a way to see the request the client posted? Regards Christopher