Jump to content

Azkabahn

Members
  • Content Count

    153
  • Joined

  • Last visited

  • Days Won

    2

Everything posted by Azkabahn

  1. perhaps this could be a feature request where user has its own global api key?
  2. Hi, well, that is not exactly what we are looking for. What we try to achieve is to have some sort of integration with http://rundeck.org where in the rundeck UI a user could select a password list where to get credentials or other data. It is possible to ask the user to provide API key and PasswordListID, but we would like to do this without user interaction
  3. Hi, when i go to "account lockout monitoring" and click "query event logs now" i get the window with the error. In the error console it was saying: I then realised that I was using the read-only account. Then I have changed to another account with write permissions. Unfortunately, I get the same error window and in the console it says: Error Code = The RPC server is unavailable, StackTrace = at System.Diagnostics.Eventing.Reader.EventLogException.Throw(Int32 errorCode) at System.Diagnostics.Eventing.Reader.NativeWrapper.EvtQuery(EventLogHandle session, String path, String query, Int32 flags) at System.Diagnostics.Eventing.Reader.EventLogReader..ctor(EventLogQuery eventQuery, EventBookmark bookmark) at admin_passwordresetportal_users_edit.CheckEventLogs()
  4. Hi, we have many integrations with PasswordState and I was wondering would it be possible to get a list of PasswordLists that user has access to. Something like you have implemented in the browser plugin when a user can choose where to save the credentials.
  5. Azkabahn

    Reports

    Hi just a thought, it's a bit confusing to have a report called "Report Name: What has a user been doing lately?" where you can select duration up to 3 years. According to your recommendation, you suggest keeping auditing records up to 1 million. I assume that many of the PasswordState customers for sure generates more records than that over 3 years period. This contradicts a bit to what is recommended and what kind of functionality is provided
  6. Hi, I want to confirm whether the API key value is always 32 symbols long? Is there a chance that it will change?
  7. Thanks! Apparently, that user had zoom level set to 80% on Chrome. It turns out that windows scaling factor have the impact on this as well. Even if the Chrome is set back to 100%, the user had Windows display properties set scale factor for 125% and Chrome was still sending float value instead of an integer. When everything was set to its defaults, it worked fine.
  8. Hi, we have noticed that Copy&Link feature does not work properly on Chrome. POST request returns HTTP 200 with content “49|error|500|665.9710693359375 is not a valid value for Int32.|”. After that “Cancel” button does not work either. I figured out that the problem is identical to this one: http://www.telerik.com/forums/system-formatexception-78e82e51af27#Ww7bQEwfgUiShf9gFFmxBg - Chrome sends scroll position as float rather than integer. Perhaps this is related here as well. Here are the details: Passwordstate: V7.8 (Build 7854) Google Chrome 57.0.2987.133 (Official Build) (64-bit) Revision ec33cd0c06881d919ac0de419d829ad914e0be8f-refs/branch-heads/2987@ {#887} OS Windows, JavaScript V8 5.7.492.71
  9. Hi, I have an "issue" here. I have a list of a lot of records in it. I grant Modify permissions (it doesn't allow me to grant Admin access) to the record inside the list to one person. Now in order to minimize the support chain. I would like that user to manage whom he grants additional permission to that record. I know that there is Copy&Link function, but it doesn't fit in this situation. Neither granting permissions to the whole list for that user will work. Is there any solution to that or i just have to choose between later mention two?
  10. Thanks for the updates!
  11. Hello, from the change log i see that this issue was not fixed. Do you have ETA on this?
  12. Hi, yes, the record is added. I just noticed that when the record is added it doesn't appear in the "recent activity" log that this record was added via API.
  13. I understand the reasoning of that, it's just then the activity log doesn;t really make sense if you try to investigate when actually someone logged int to certain website
  14. Hi, i am using V7.8 (Build 7854). I have started to notice only now that after I visit www.website.com, the browser plugin fetches all the login credentials associated with that URL and leaves records in "Recent Activity" log. This is confusing because there is no way of knowing which credential was used to login to the website.
  15. Hi, this probably can be considered as a bug, but by knowing how MS SQL work then it's not. Nevertheless, perhaps this could be fixed somehow. So here is the "issue": I have a shared password list with API key set and with settings set to have ONLY "API Key is authorized to add new Passwords". So, when I try to add the new password to the list via API, I get an error message: [{"errors":[{"message":"Forbidden"},{"phrase":"The API Key Settings for the Password List with ID '1614' prevents Retrieval of Passwords."}]}] It would be really great if this feature would really work. For me, it makes a lot of sense because I do not want others to be able to read the content of my password list. Although, I know that in MS SQL if you do INSERT, you have to have permissions to do SELECT as well. So either this has to be fixed in the UI that prevents you from having enabled only "API Key is authorized to add new Passwords" or fix it in the way that it does what is says
  16. Hi, from the start of using PasswordState, we had the setting in " When a user's account in Active Directory is deleted, perform the following in Passwordstate" set to "Disable Passwordstate Account". Now the issue is that there are a lot of accounts which are disabled. Is there a way to remove all of them in one go? I have initiated manual sync with AD, but it doesn't remove them from PS
  17. Would you consider this as a feature request for a simple user to find that?
  18. that's exactly what i meant, but i was thinking it would be a nice feature in the UI for the simple user. I get questions from developers how can they find a list based on the password ID
  19. Hi, what is the best workflow to find Password List ID if I only have Password ID?
  20. Hello, we are using Puppet (https://puppet.com/) in our infrastructure and it uses PasswordState to fetch credential to certain hosts. I often see error messages like "Connection reset by peer". I know that this probably is not related directly with the application (PasswordState), but more with IIS not able to handle too many connections. Do you have any tips or what config modifications I could do to increase handling of connections coming to PasswordState>
  21. It was set to 1 hour, which I guess was too short time window to finish the sync. And yes, I do have HA instance of PasswordState
  22. Hello, lately i have been seeing alerts like: I was wondering what may cause this alert. From Application log I see two consecutive entries: First one - Cannot perform Passwordstate Active Directory User Accounts And Security Group Synchronization on Web Server 'ABC', as one is currently In progress." Second one - Finished Passwordstate Active Directory User Accounts and Security Group Synchronization. Time difference between them is 1 minute.
  23. Hi, both methods are ok, but not good enough. I was thinking from a Security Administrator perspective. It would be really great to "inject" and propagate ONLY particular user or group. At the moment I have done everything manually. The Bulk Processing window is not very UI friendly when you have hundreds of lists.
×
×
  • Create New...