Release changelog
Please find release changelogs grouped by product and sorted by release date below.
Notakey Authentication Appliance
v5.0.25 (2021-07-01)
- Support for installation on Ubuntu 20.04 LTS
- Automatic update availabilty check and administration user notification
v5.0.24 (2021-06-01)
- Support for cluster datastore snapshots
- Configuration consistency fix for cluster leave / join commands
- Verify cluster state before updating plugins with “ntk sys update”
- Fix regression in “ntk wizard” - v5.0.23 (2021-05-27)
- Fix for ROS 1.1.0 integration 
- NtkAS session encryption key now resides only in cluster config storage 
v5.0.22 (2021-04-14)
- Builtin reverse proxy certificate provisioning improvements
- Fix “ntk sys supreq” on some appliance versions
v5.0.21 (2021-04-12)
- Fixed ntk rp status command
v5.0.20 (2021-04-09)
- Fixed regression with static certificates on non-management port
v5.0.19 (2021-03-05)
- Bugfixes for use cases with static certificates for alternate FQDNs
- Shared cluster directory sync issue fixes - v5.0.18 (2021-02-24)
- Fix regression that broke “ntk wizard” - v5.0.17 (2021-02-23)
- Improvments for backup load and save commands 
- Added support for plugins, see plugin-support for details 
- Change local namespace for downloaded container images 
- Support for NtkAS 3.1, server now runs in single container 
- Changes in respect to external load balancer users, management service is no longer available on port 6000 (use :nas.dual_instance_mode to keep old behaviour) 
v5.0.16 (2020-12-02)
- Fixed bug with external outbound proxy configuration - v5.0.15 (2020-11-27)
- NtkAS and NtkSSO healthcheck improvements 
- Fixed - ntk as statuscommand
- Fixed bug in - ntk sys cleanup
- Enable cron automatically during install 
- docker psnow will not report health status, use- ntk [service] statuscommand
- Encryption support for support request log archives made with - ntk sys supreq- v5.0.14 (2020-11-09)
- Added support for REDIS server configuration for NtkAS service 
v5.0.13 (2020-10-27)
- Fixed issue with custom user password change
v5.0.12 (2020-10-22)
- Fixed bug related to backup restore failure when NTP servers are defined - v5.0.11 (2020-09-03)
- Added healthcheck from reverse proxy side towards NtkAS to avoid http 404 in case of backend failures - v5.0.10 (2020-07-01)
- Timezone change bugfix 
- Support for NtkAS 2.23.x - v4.2.40 (2020-06-08)
- Added syslog option support for VRRP service. - v4.2.39 (2020-05-27)
- Add :nas.caching and :nas.cache_ttl to control cache options for NtkAS service - Notakey Authentication Server- v4.0.9 (2021-08-18)
- Various operational metrics now available via stats-agent service 
- Service domain configuration in admin UI 
- Fixed issues with KV store migration in multinode clusters - v4.0.8 (2021-07-16)
- Redis persistence support 
- Framework and integration library update 
- Performance improvements for large datasets, fixes ussues with lots of users 
- Pagination support on service user view 
- Improved user search and display 
- Option to disable simplified username lookup feature per service 
- Migration to a new Key-Value schema version, migration occurs during first instance launch - v4.0.2 (2021-06-18)
- Redis persistence support 
- Framework and integration library update - v4.0.1 (2021-06-18)
- Redis persistence support 
- Framework and integration library update - v3.2.2 (2021-06-16)
- Fix bug affecting LDAP user sources - v4.1.0 (2021-06-11)
- Redis persistence support 
- Support for transient auth requests 
- Speed and caching improvements 
v3.2.1 (2021-05-13)
- Active Directory integration improvements, support for AD user UAC flags
- Active Directory and LDAP user source server address failover support
- Support for Active Directory and LDAP user source server name TLS certificate match ignore
- Cluster status page showing cluster details
- Various OIDC IdP improvements: logout, session expiry control, auth factor configuration - v3.1.3 (2021-04-30)
- Active Directory integration improvements 
- Cluster status page showing cluster details 
v3.1.2 (2021-04-13)
- OpenID Connect service compatability improvements with .NET libraries
- Fix for signed payload verification containing multiple text lines
- Fixed regression in service configuration flag update - v3.1.1 (2021-03-02)
- OpenID Connect implicit authentication flow suppport for onboarding 
- OpenID Connect onboarding requirement configuration form improvements - v3.1.0 (2020-12-28)
- Support for OpenID Connect Identity Provider 
- Certificate generation improvements 
- Support for key security requirement change 
- Service publish state support 
- Custom service ordering support in mobile client 
- Onboarded device certificate inspection support - v2.24.0 (2020-10-29)
- API improvements 
- Dependency update 
- Fixed issue with log archiving when OpenID onboarding is enabled - v2.23.6 (2020-10-13)
- API authentication dependency update 
- Improved client for load and integration tests - v2.23.5 (2020-09-01)
- Fix URL for public QR code display 
- Fix URL for pre-approval time request - v2.23.4 (2020-09-01)
- Key value store relational model improvements - v2.23.3 (2020-08-12)
- Various Open ID Connect onboarding improvements - v2.23.2 (2020-07-22)
- Add API credential management to admin UI 
- Add security team management to UI - v2.23.1 (2020-07-20)
- Add support for license automatic renewal after expiry 
- Use onboarding link in first run wizard - v2.23.0 (2020-06-30)
- Support for automatic API endpoint registration 
- Separated configurations for SERVICE_FQDN and AUTH_DOMAIN 
- Fixed proxy issue with messenger client - v2.22.0 (2020-06-05)
- Redis global cache support 
- Build system changes 
- Tagged builds with build date and other VCS labels 
- Added support for administration dashboard users to be authenticated against remote user sources 
- Remote users cannot be disabled locally 
- Removed misleading “Last update” from home view - v2.21.3 (2020-06-05)
- Build system changes 
- Tagged builds with build date and other VCS labels 
- Added support for administration dashboard users to be authenticated against remote user sources 
- Remote users cannot be disabled locally 
- Removed misleading “Last update” from home view - v2.21.2 (2020-06-04)
- Build system changes 
- Tagged builds with build date and other VCS labels 
- Added support for administration dashboard users to be authenticated against remote user sources 
- Remote users cannot be disabled locally 
- Removed misleading “Last update” from home view - v2.21.0 (2020-05-27)
- Improved caching strategy for all elements 
- Fixed second factor requirement change to be immediate - v2.20.1 (2020-05-14)
- Add support for user groups / user tagging features 
- Fixed bug with CSV user import when mixed user repositories are used (external and local) 
- Application framework update 
- Add sync feature for external service users - v2.19.5 (2020-05-13)
- Fix error during onboarding when onboarding request is missing (due to retention) 
- Increase default thread count for application server 
- Add application load statistics interface - v2.19.3 (2020-03-23)
- Added biometry check option when configuring authentication profile 
- Fixed bug with auth request generation from auth profile - v2.19.2 (2020-02-10)
- Add optional custom filter for LDAP usersource engine - v2.19.1 (2020-02-07)
- Allow partial username instead of full UPN for approval time requests - v2.19.0 (2020-02-07)
- SMS codes now can be copied in both iOS and Android 
- Support for view level access to services 
- Global team configuration in managent UI 
- Messenger service client improvements 
- Configurable timeout for messenger client 
- Visual improvements for time request and onboarding views 
- Admin session inactivity timeout now configurable 
- Rewrite for password change to allow changing password without root service access 
- Base image update to latest alpine linux (maintenance lifecycle) 
- Application framework update (maintenance lifecycle) 
- Additional licence fields in NAS user report 
- Approver policy now can have multiple approvers 
- Fixed bug in user import from CSV - v2.18.1 (2020-01-27)
- SMS codes now can be copied in both iOS and Android 
- Support for view level access to services 
- Global team configuration in managent UI 
- Messenger service client improvements 
- Configurable timeout for messenger client 
- Visual improvements for time request and onboarding views 
- Admin session inactivity timeout now configurable 
- Rewrite for password change to allow changing password without root service access 
- Base image update to latest alpine linux (maintenance lifecycle) 
- Application framework update (maintenance lifecycle) 
- Additional licence fields in NAS user report 
- Approver policy now can have multiple approvers 
- Fixed bug in user import from CSV - v2.17.0 (2019-12-19)
- Show configured auth domain in setup wizard 
- Require password confirmation for initial setup 
- Documentation update 
- Full CRUD operation on service users 
- Simplified device and user discovery over API based on signature fingerprint 
- Error notification in authentication profiles 
- On error event callbacks in authentication profiles 
- Auth request cancellation API method 
v2.16.9 (2019-11-05)
- Added autentication profile functionality - v2.16.8 (2019-09-25)
- Fixed minor edge case where querying auth request returns HTTP status 500 - v2.16.7 (2019-09-23)
- Admin access recovery from CLI 
- Log archiving fixes 
- Initial setup from CLI - v2.16.6 (2019-09-11)
- Added support for special biometric auth request category - v2.16.5 (2019-09-11)
- Bugfix for onboarding requirements configuration - v2.16.4 (2019-09-03)
- Biometry authentication support in API and management UI 
- Visual improvements for onboarding and authentication flow views - v2.16.3 (2019-08-20)
- API worker mode bugfix - v2.16.0 (2019-08-16)
- LDAP user source improvements, realm validation and attribute mapping 
- Application role configuration support (worker, management) 
- Validate logo presence on new service creation - v2.15.1 (2019-06-19)
- Fix bug with missing version information 
- Fix bundled API documentation formatting and add scope information for API calls - v2.15.0 (2019-06-18)
- Support for optional WhatsApp number verification instead of SMS - v2.14.14 (2019-06-17)
- Fix state sync bug when using multiple devices to approve auth requests - v2.14.13 (2019-06-07)
- Users page in each service now has a function to send generic notification or SMS to all onboarded users. 
- API method to send generic notification or SMS to single user, requires urn:notakey:notify scope. 
- Fixed bug where COUNTRY_PREFIX configuration option would be ignored during onboarding when user has mobile number in national format, without country prefix. - v2.14.12 (2019-05-20)
- CLI reporting functionality - v2.14.11 (2019-05-17)
- Do not allow invalid token publishing 
- Shorten default API client ID - v2.14.10 (2019-04-15)
- Device telemetry support 
- Visual improvements - v2.14.9 (2019-04-04)
- Support for relaxed device onboarding 
- Max device limit can be specified globally per service - v2.14.8 (2019-03-26)
- Logrotate bugfix - v2.14.7 (2019-02-23)
- Fix send test notification 
- Show formatted dates in user details 
- Add user license detail panel 
- Add some more attributes for application user display 
- Disable attribute editing for external users 
- Add none selected translation for approver policy 
- Allow setting and unsetting approver without any warning messages 
v2.14.6 (2019-02-20)
- Fix syslog configuration save bug
- Support for Active Directory TLS port configuration
v2.14.5 (2019-01-31)
Docker image: notakey/dashboard:2.14.5
- Fixes broken device discovery due to broken indexes
v2.14.4 (2019-01-28)
Docker image: notakey/dashboard:2.14.4
- Documentation fixes
- Data migration for index and sequences fixed
v2.143 (2018-12-10)
Docker image: notakey/dashboard:2.14.3
- Do not wait for push nofification processing
- Fix favicon
- QR code domain configuration support
- Callback URL bug fix
- Improved CSV support
- Documentation improvements
v2.14.2 (2018-11-06)
Docker image: notakey/dashboard:2.14.2
- M2M API fore encryption key registration
- Callback support in AuthRequests
- Service provider state param support in AuthRequests
- QR code optimisations
v2.14.1 (2018-10-26)
Docker image: notakey/dashboard:2.14.1
- M2M API authentication enhancements
- Support for user disable / enable from API and GUI
- Support for additional user management API calls
- Admin user management improvements
v2.13.5 (2018-08-03)
Docker image: notakey/dashboard:2.13.5
- Speed improvements for auth request generation
v2.13.4 (2018-07-24)
Docker image: notakey/dashboard:2.13.4
Bug fixes
- Improved audit log cleanup
- Compatability with old windows CP clients
v2.13.3 (2018-07-17)
Docker image: notakey/dashboard:2.13.3
Bug fixes
- Fixed audit logging for administration sessions
v2.14.0 (2018-07-12)
Docker image: notakey/dashboard:2.14.0
- M2M API authentication enhancements
- Support for user disable / enable from API and GUI
- Support for additional user management API calls
v2.13.2 (2018-07-12)
Docker image: notakey/dashboard:2.13.2
Bug fixes
- Fixed authentication requests using UPN
- Fixed indexing issue with application users
- Fixed healthcheck throwing app out of service due load increases
v2.13.1 (2018-01-04)
Docker image: notakey/dashboard:2.13.1
Bug fixes
- Fixed issue when ActiveDirectory GUID would not be properly decoded.
v2.13.0 (2017-11-13)
Docker image: notakey/dashboard:2.13.0
Features
- Can now see active licence count
- Improved logger output
Bug fixes
- Fixed cases when appliance incorrectly determined cluster having a leader.
v2.12.0 (2017-10-23)
Docker image: notakey/dashboard:2.12.0
Features
- Introducing Authentication Server application. This is a special type of application which has these characteristics:
- It is used for Notakey Authentication Server onboarding.
- Allows enforcing 2FA authentication for administrators.
- Allows NAS administrator management.
 
v2.11.0 (2017-10-17)
Docker image: notakey/dashboard:2.11.0
Features
- Added CORS support for our API.
- User device API endpoint now returns associated public key.
v2.10.0 (2017-10-13)
Docker image: notakey/dashboard:2.10.0
Features
- Onboarding and service pinning can now be performed using a QR code.
- Added confirmation dialogs on any destructive action, such as removing an application.
Tasks
- Updated Ruby and Ruby on Rails versions to mitigate newly discovered security vulnerabilities.
v2.9.0 (2017-09-29)
Docker image: notakey/dashboard:2.9.0
Features
- Added security level to application. This option determines wether a user needs PIN/Fingerprint on their devices or not.
- Added expiring appliance licence notifications
- Omitting health-check requests in logs, making them less verbose
v2.8.5 (2017-09-19)
Docker image: notakey/dashboard:2.8.5
Bug fixes
- Fixed auth request signature validation containing UTF-8 characters.
v2.8.4 (2017-09-04)
Docker image: notakey/dashboard:2.8.4
Bug fixes
- Fixed race condition when rendering side navigation from multiple threads.
v2.8.3 (2017-08-30)
Docker image: notakey/dashboard:2.8.3
Bug fixes
- Fixed “Users pending manual approval” being hidden for non-root users.
v2.8.2 (2017-08-16)
Docker image: notakey/dashboard:2.8.2
Bug fixes
- Fixed signature validation when missing application logos
- Fixed permission issue when viewing created user sources
v2.8.1 (2017-07-20)
Docker image: notakey/dashboard:2.8.1
New Features
- Added application user table sorting and filtering
Bug fixes
- Fix time zone configuration.
v2.8.0 (2017-07-14)
Docker image: notakey/dashboard:2.8.0
There are cases when access to a particular system should not be granted permanently or independently. Multi-user approval provides a solution by allowing to configure an approver for an employee.
New Features
Introducing two new policies regarding multi-user approval: - Immediate approval - each request to an application must be immediately approved by manager (approver). - Pre-approval - user requests access to an application for a specified period of time.
v2.7.1 (2017-06-07)
Docker image: notakey/dashboard:2.7.1
Bug fixes
- Fixed missing navigation icons and favicon.
v2.7.0 (2017-06-06)
Docker image: notakey/dashboard:2.7.0
New Features
- Added a new health check parameter to ensure node is operational.
- Now when user changes password, old password must be entered for confirmation.
Misc. Improvements
- Improve frontend in offline mode by removing assets stored in remote CDN’s.
v2.6.0 (2017-05-29)
Notakey now supports user onboarding through LDAP user source.
Docker image: notakey/dashboard:2.6.0
New Features
- Added an option to specify LDAP as a user source.
v2.5.0 (2017-05-22)
Notakey appliance supports HTTP proxy
Docker image: notakey/dashboard:2.5.0
New Features
- Administrators can now set HTTP proxy settings.
- System uses default port for rsyslog endpoint.
v2.4.0 (2017-05-10)
Notakey appliance now supports Openid Connect onboarding
Docker image: notakey/dashboard:2.4.0
New Features
- Users can now be onboarded using Openid Connect.
v2.3.0 (2017-05-03)
Extending Rsyslog functionality
Docker image: notakey/dashboard:2.3.0
New Features
- Administrator can now set appropriate facility for rsyslog endpoint.
v2.2.0 (2017-05-02)
Introducing Remote syslog integration.
Docker image: notakey/dashboard:2.2.0
New Features
- Administrator can now set Rsyslog endpoint to receive real-time audit events.
v2.1.0 (2017-04-25)
We are pleased to announce a multi-node deployment focused version of the Notakey Authentication Server.
Docker image: notakey/dashboard:2.1.0
New Features
- if a multi-node cluster is in a read-only state, then authentication requests can now be created in-memory (on the specific node, which received the API request)
- administrators can now change their passwords via the web-based user-interface (in the user profile section)
Misc. Improvements
- usernames are no longer case-sensitive
- reduced system boot time by a factor of 10
Bug Fixes
- fixed a bug where application logos would not be rendered
- the healtcheck endpoint would not work at all, if a multi-node cluster was in a read-only mode
- when sending POSTrequests to/api/v2/auth_request, thettl_secondsparameter would not be parsed properly, and cause an error
2.0.21 (2017-03-16)
- added session timeout for dashboard admin users (the session will time out after 10 minutes of inactivity)
- internal: rails framework update to 5.0.2
- bugfix: side navigation was cached based on URL, and sometimes displayed incorrect application list
- ui: removed performance counter from the top-left corner of each page
- bugfix: onboarding requirements were incorrectly serialized in a few corner cases
Authenticator Mobile
Android 3.0.24 (2021-07-19)
- Show visual feedback on push notification interaction
- Framework updates
iOS 3.0.12 (2021-03-09)
- Hardware bound keys improvements
- Support for security level changes for onboarded services
- Support for custom service ordering
- Support for service unpublishing
- Bugfixes - Android 3.0.21 (2021-03-09)
- Support for TLS client certificate authentication during onboarding - Android 3.0.20 (2021-03-09)
- Hardware bound keys improvement, support for StrongBox 
- Support for security level changes for onboarded services 
- Support for custom service ordering 
- Support for service unpublishing 
- Bugfixes - iOS 2.4.99 (2020-11-23)
- Russian language support - Android 2.4.78 (2020-11-23)
- Russian language support - Notakey Windows Credential Provider- 1.2.51 (2019-12-20)
- Obey policy of last username display stored in HKLM Software\Microsoft\Windows\CurrentVersion\Policies\System\DontDisplayLastUsername 
- Do not request user to reenter username if password is expired - 1.2.41 (2019-06-04)
- Use latest Notakey SDK and V3 API 
- Support for remotely cached password login 
- Improved API token management 
- Security improvements limiting access to internal IPC and registry cache 
- Security improvement encrypting sensitive parts of IPC communication between logonUI plugin and BG service 
- Stop service immediately on uninstall 
- Bugfixes 
1.1.27 (2019-01-11)
- Maintenance release, dependency update - 1.1.26 (2018-11-23)
- Textual fixes 
- Installer default configuration 
1.1.25 (2018-11-23)
- Maintenance release, dependency update
1.1.24 (2018-11-23)
- Textual fixes
- Installer default configuration
1.1.23 (2017-10-27)
- Override configuration support from Windows registry
- Configurable timeout values for NAS requests
- General event and error logging to Windows EventLog
- Configurable auth request messages and expiration timeout
- Bumped nuget package versions, including Notakey SDK
1.0.52 (2017-10-18)
- Override configuration support from Windows registry
- Configurable timeout values for NAS requests
- General event and error logging to Windows EventLog
- Configurable auth request messages and expiration timeout
- Bumped nuget package versions, including Notakey SDK
1.0.52 (2017-10-18)
- Override configuration support from Windows registry
- Configurable timeout values for NAS requests
- General event and error logging to Windows EventLog
- Configurable auth request messages and expiration timeout
- Bumped nuget package versions, including Notakey SDK
1.0.51 (2017-09-29)
- Updated manual with CLSID and links
- Updated documentation building scripts
1.0.50 (2017-09-28)
- Updated release script to publish the latest documentation
1.0.49 (2017-09-28)
- Updated unregister*.bat scripts
- Updated FAQ about a rare issue, where NtkCp can not be registered
1.0.48 (2017-09-08)
- Appveyor build Slack notification integration
- Appveyor build pushes artifact to GitHub with changelog
1.0.46 (2017-09-08)
- Automatic Appveyor build process and artifact publishing to GitHub
1.0.46 (2017-09-08)
- Automatic Appveyor build process and artifact publishing to GitHub
1.0.44 (2017-08-31)
- init
Notakey Authentication Proxy
1.0.5 (2020-10-28)
- Fix no response to downstream when user not found in NtkAS service.
