Downloads
Version 8.05 Build 1225 (March 2024)
Changes in SSRPM version 8.05
relative to version 8.04
Enhancements:
- Admin Console: Added an
extra menu (help/Generate GUID). This generates a Guid string that can be copied
and pasted to the web.config, needed to enable some functionality. Earlier this
had to be done by external tools.(id 23835-3)
Fixes:
- Onboarding: The
onboarding functionality was broken in the last version (8.04). When the
end-user specified the correct id in the onboarding dialog, the account lookup
would always fail, preventing enrollment. This has been fixed (id 23835-1)
Version 8.05 Build
1224 (October 2023)
- Security fixes.
Version 8.04 Build
1224 (October 2023)
Changes in SSRPM version 8.04 relative to version 7.06
Enhancements:
- Added a profile option to use SMS instead of email as
default 2FA option when possible (id 21044)
- Updated support for TLS related algorithms. Originally
SSRPM used a fixed list of algorithms allowed for initiating SSL/TLS communication
as a client. This however required all of these to be enabled on the
client side, even those not used in the actual negotiated connection. This
caused issues when upgrading to newer algorithms in Windows. Now it does
not specify any explicitly, but uses the ones enabled in de Windows OS
instead.(id 21870)
- Updated all used external libraries to currently
supported versions: (id 21221)
updated bootstrap to version version 3.4.1
updated jquery to version 3.7.0
updated newtonsoft to version 13.0.3
updated microsoft.jquery.unobtrusive.validation
to version 4.0.0
updated log4net to version 2.0.15
updated microsoft.web.infrastructure to version
2.0.0
updated asp.net mvc to
version 5.2.9,
updated razor to version 3.2.9
updated asp.net to version
17.6
updated openssl to version 3.0.9
updated the used build environment to Visual
studio 2022 and the windows SDK to 10.0.22621
Fixes:
- Service Installation process. When fresh installing a
new service and choosing for a pre-existing database instead of createing
a new database, the database settings were not correctly copied to the
service, requiring an extra manual configuration step after installation
in order to connect to the correct database. (id
22506)
Version 7.06 Build 1219 (5 May
2023)
Changes in SSRPM
version 7.06 relative
to version
7.05
Enhancements:
Reset wizard (legacy interface). Added support for longer passwords in the legacy interface of the Reset Wizard. It was not possible to specify new passwords longer than 24 characters. Now it is. Note the Reset functionality of the web interface has not been modified as it already supported longer passwords. (id 20107)
Web interface. Made the selection links on the main page selectable by tabbing. Pressing enter or space will navigate to the link destination. Also included some minor accessibility improvements (id 20839, id 20274).
Web Interface. The IP-blocking feature can now be configured to use the client-IP from the "x-forwarded-for" header of the web request, instead of the actual originating IP address. This is useful for instance in reverse proxy scenarios. To enable this feature the "EnableIPBlockingXForwardedFor" setting must be set to true in de Web.config file. Note that for this to work the IP addresses of the proxy must also be explicitly whitelisted by using the "IPBlockWhiteList" setting in the Web.config file. (id 20869)
Fixes:
Updated the version of the jQuery.UI.Combined package to 1.13.2, and of jQuery.validation to 1.19.5. (id 20388)
The Captcha on the website could not be refreshed if the 'CaptchaEnableMath' setting in the web.config was set to true. Now it does work. Note that refreshing a math Captcha will result in a nomal one for the retry. (id 18130)
When enrolling by means of the web interface with advanced authentication , an email hash was not set in the database in the special case that the option to show the email address was not specified. This resulted in the feature "Forgot my username". not working. Now it will store it correctly. (id 20644)
When enrolling with the web interface, and a pincode was required as confirmation of the sms number, the hover text indicating that a message had been send might be drawn over the editbox of the pincode, temporarily obstructing the user input. The text will now be shown above the sms number. (id 20941)
Version 7.05 Build 1218 (11
October
2022)
Enhancements:
SMTP Email. Added support for SHA 512 in the TLS handshake. Earlier only SHA1, SHA 256, and SHA 384 were supported. This caused connections not to work if the exchange certificate required SHA 512. (id 16996)
Database configuration. When using a SQL database connection string to a provider other than "SQLOLEDB.1" a warning message would pop-up indicating that the used provider might be unsupported. This message will now no longer show for connections to the "MSOLEDBSQL.1" and "SQLNCLI11.1" providers. (id 18707)
Fixes:
There was still an reference to an old no longer existing jquery file in the error.html of the web site. This has been updated. (id 18700)
An obsolete question was removed from the FAQ of the website. (id 16891)
Version 7.04 Build 1217 (11 March
2022)
Changes in SSRPM
version 7.04 relative
to version
7.03
Fixes:
The subject line in email messages was not encoded and only supported ASCII text. This has been updated to encoded "windows-1252" text for plain text emails and either encoded "windows-1252" or "UTF-8" text for HTML emails. (see rfc 2047) (id 15561)
Updated the version of the Kendo grid for the helpdesk web site (SSRPM_CIV), to fix an incompatibility with the updated version of Jquery which caused the grid header context menu to malfunction. (id 16640)
Fixed an issue in de client website, which caused the currently selected display language to be set as the global default after opening the Frequently Ask Questions page. (id 16732)
Version 7.03 build 1216 (21 Dec
2021)
Changes in SSRPM
version 7.03 relative
to version
7.02
Enhancements:
- The security
of the web interface
has been enhanced by
updating the following
packages: (id
15701)
- the
log4Net package to
the current latest
stable release
version
2.0.13.
- the jQuery
package to the
current latest
stable release
version 3.6.0.
Fixes:
- Password
reset could fail when
the minimum required
length of the password
in the windows
password policy was
set to 17 or higher.
The max allowed
minimum length (by
SSRPM) has been
increased to 24. (id
15487)
- When the user
client software is
installed, one of the
possible features is
that there is a
"forgot my password"
link shown on the user
logon screen. However
on recent windows 10
clients this feature
was also visible in
other scenarios, for
which this feature was
not intended,
potentially causing
issues when clicked
upon. This was caused
by an error in the
filtering mechanism in
the SSRPM credential
provider. Now the
feature will not be
shown anymore in so
called "CredUI"
scenarios, such as
activating a program
with "run as different
user". (id
15494)
Version 7.02 build 1215 (29 October
2021)
Changes in SSRPM
version 7.02 relative
to version
7.01
Requirements
Update:
The web Interface of this version of SSRPM targets version 4.7.2 or above of the .Net Framework instead of version 4.5. Please update the .Net version installed at your IIS server accordingly.
Enhancements:
Updated the service installation wizzard, so that the default database of choice is SQL Server instead of Access. (id 7978)
When sending an Email or a Sms with the pincode for MFA during enrollment or reset by means of the web interface, a notification is shown in the web interface to indicate that a message has been send. (id 14966)
The security of the web interface has been enhanced, with some new features available since version 4.7.2 of the .Net framework. (id 13880)
Fixes:
When an error occured during configuring or changing the SMPP configuration (The configuration for bulk sms traffic), this could cause the SSRPM service to stop due to an error in the logging mechanism for this particular module. This has been fixed. (id 14148)
E-mailing large SSRPM reports could fail with error code 10035 on slow connections to the SMTP server. This has been fixed. (id 12755)
The tab-order on several pages of the web interface was incorrect. This has been fixed. (id 12801)
Version 7.01 build 1214 (16 March
2021)
Changes in SSRPM
version 7.01 relative
to version
7.00
Enhancements:
Updated the Tools4ever icons to the current design (light blue). (id 11265)
It does not longer list specific sql server versions at the database selection page in the SSRPM service installer. This is a explanatory display change only. ( id 10859)
The "OnboardingEnabled" registry key (which enables the onboarding button on the logon screen) was not available as option in the ssrpm policy. It has been added as option. (id 11478)
Fixes:
The GPO Distribution Guide listed the incorrect registry key for the change of the background color of the browser client. (id 11478)
The default text for end user notification for the dutch language as specified in the EndUserNotificationTexts.txt file interchanged the blocking and releasing events. This is now fixed. (id 11967)
When not specifying an explicit port for the ssrpm web site in the SSRPM GPO, it did not default to the correct default https port (443), when verifying the connection. This is now fixed. (id 11261)
Version 7.00 build 1213 (6 November
2020)
Changes in SSRPM
version 7.00 relative
to version
6.97
Features:
Subject templates for administrative email messages added.
For the administrative e-mail messages that are send to a SSRPM administrator only the message content template could be changed (by manually changing the template files in C:\Program Files (x86)\Tools4ever\SSRPM\Service\Email). Now there are also template files for the subjects of those messages. (id 10859)
Fixes:
The special "onboarding" feature could fail matching the correct profile when the profile that should be matched was group based and had more than one group assigned to it, because only one group assignment was evaluated. Now all assignments are evaluated. (id 10492)
The FAQ button that is on every page in the web interface, would show an empty page when there are no relevant questions for the page. Now it will show a default placeholder stating that there are no questions for the particular page instead. Also some FAQ where added. (id 8438)
When using Advanced Authentication with verification by e-mail, there may be specified in the profile a list of email domains that are not allowed to be used for verification. When the end user added a space after a requested email address for verification, this check could be circumvented. This is now fixed. (id 10633)
On successful upgrade of the service by the administation console, the installation log messages are no longer added to the log of the service itself, as this may cause the service to become inoperative requiring a one time manual restart of the service. (id 11174)
Version 6.97 build 1210 (23
july,2020)
Changes in SSRPM
version 6.97 relative
to version
6.95
Fixes:
Fixed a security vulnerability in the browser client when it is invoked from the windows logon screen. (id 10053). Note that an incorrectly configured connection to the website is now actively refused.
Note: TLS versions below 1.2 are no longer supported from this version on
Known
issue:
The website
connection configuration
in the ssrpm policy must
explicitly include the
port number that is
configured in IIs, even if
it is the default port
number.