Softpedia >Windows >Security >Password Managers & Generators >Pleasant Password Server >  Changelog

Pleasant Password Server Changelog

What's new in Pleasant Password Server 7.8.3.0

Apr 16, 2018
  • The following security concerns have been addressed in this release:
  • Vulnerability Patch
  • Summary:
  • Additional information could be made accessible by leveraging existing authorized access and access information. Improvements have been made to Password Server's handling of user-related security information.
  • In a local security context, insufficient output controls could allow an authenticated user opportunity to exploit handling system information, by entering values into the system.
  • End-user authorized auto-fill of password credentials by browser or browser plugin could potentially be leveraged by a third-party script running on the same local website domain.
  • Recommendation (optional): to further mitigate this concern: Disable Automatic Auto-Fill
  • A knowledgeable person with access to a previously accessed and unsecured Password Server machine could leverage information to gain entry into the application.
  • Status:
  • This update resolves these concerns, along with the optional risk mitigation step of disabling auto-fill.
  • Companies will be given 3 months to deploy this patch, before more specific information is disclosed.
  • Acknowledgements: Pleasant Solutions would like to thank Profundis Labs for their security audit and for their participation and cooperation with us, in protecting our customers.
  • New Feature: Favourites Folders:
  • Available in Enterprise+
  • Configured in Settings > Advanced Folders
  • Favourite entries can be selected in the Web Client by clicking on the Star icon that appears in the Entry grid and viewed in either the Web Client or KeePass
  • If a user has selected favourites, a Favourites folder will display above the Root folder
  • Improvements:
  • Can now copy entry username and open the password copy dialog from the right-click context menu in the Web Client.
  • Users with a Reset Challenge Policy who have not met the requirements for that policy will now see a message informing them to complete enrollment to ensure they can reset.
  • The 'Forgot Password' link on the login page can now be hidden in Enterprise+ from Settings > Appearance
  • The 'Help' link in the site header can now be hidden in Enterprise+ from Settings > Appearance
  • The folder that the web client starts on can now be set on Settings > Advanced Folders
  • If the admin has set the starting folder to User Preference, then users can change this setting via Hello, [username] > Manage Account > Edit > Starting Folder
  • NAS Identifier or IP Address can now be set for RADIUS Two Factor configurations
  • All Reports with date range parameters now allow leaving a date field blank, to include events that occur since the very start, or events up until the current moment.
  • Numerous Security and UI improvements
  • Bug Fixes:
  • Directory User Roles are now always checked using the credentials supplied in the directory config
  • Fixed an issue where null Custom Field values could be saved into a Credential via the API, causing errors when read in the KeePass client
  • Fixed an issue where the Two Factor Token dialog in KeePass would not always receive focus.
  • Fixed an issue where the Copy Password dialog would not appear in Tag or Favourites folders.
  • Right-click context menus in the Users and Roles grids now display the correct Actions again.
  • Fixed an issue that could prevent a user from changing their personal language setting.
  • The search field on the Web Client now properly recognizes Unicode characters.

New in Pleasant Password Server 7.8.2.0 (Mar 1, 2018)

  • Improvements:
  • The folder that the web client starts on can now be set on Settings > Advanced Folders
  • If the admin has set the starting folder to User Preference, then users can change this setting via Hello, [username] > Manage Account > Edit > Starting Folder
  • NAS Identifier or IP Address can now be set for RADIUS Two Factor configurations
  • All Reports with date range parameters now allow leaving a date field blank, to include events that occur since the very start, or events up until the current moment.
  • Numerous Security and UI improvements
  • Bug Fixes:
  • Fixed an issue where the Copy Password dialog would not appear in Tag or Favourites folders.
  • Right-click context menus in the Users and Roles grids now display the correct Actions again.
  • Fixed an issue that could prevent a user from changing their personal language setting.
  • The search field on the Web Client now properly recognizes Unicode characters.

New in Pleasant Password Server 7.7.3.0 Unstable (Aug 4, 2017)

  • Improvements:
  • Additional text has been added for the German language translations.
  • Admin can now reset their Access Levels to their default values by clicking the Reset Access Levels to Defaults button at the bottom of the Access Levels page.
  • This action requires the Administer Users Role Permission to perform.
  • Missing default Access Levels are now regenerated when activating a Community Edition license
  • Bug Fixes:
  • Reset Users now show as already imported on the Import Users page.
  • Fixed an issue that would cause the Required Comment prompt for Edit Entry to keep reappearing when editing an entry in the KeePass client.
  • Fixed an issue when using HTTP SSO where Chrome would not accept the certificates signed by the SSO Server's Root certificate.

New in Pleasant Password Server 7.6.6.0 (Aug 4, 2017)

  • Security:
  • Vulnerability Patch
  • Summary:
  • Extra confidential information could be made accessible only for accounts that have already been compromised by other means.
  • Requirements:
  • An unauthorized user would have to have already obtained the correct username and password
  • An unauthorized user would have to have knowledge of login requirements.
  • Scope of Impact:
  • User would have to already have gained access to an authorized account on the Password Server.
  • The entries along with any further activities would display as usual in Password Server's auditing and history features.
  • Status:
  • This vulnerability has been fixed in this release.
  • Companies will be given 3 months to deploy this patch, before more specific information regarding the vulnerability is revealed.
  • Versions Affected: 7.0.1 - 7.6.3
  • New Feature: Editable Email Templates:
  • Available in Enterprise+ under Advanced > Email > Email Templates
  • Allows administrators to edit the text of the emails sent by Password Server.
  • See Email Templates for more information.
  • New Feature: Direct Linking:
  • Can now link directly to Entries in the Web Client
  • In KeePass for Password Server:
  • Right-Click Entry/Folder > Open in Web Client OR Copy Link to Entry/Folder
  • Right-Click Entry > View History Now opens Entry History dialog on main Web Client page
  • In Web Client:
  • Home page > Actions > Copy Link to Entry
  • Home page > Folder Actions > Copy Link to Folder
  • Improvements:
  • Improved client loading times.
  • Reorganized layout of Admin functionality.
  • Settings page sections have moved:
  • Private Folder Settings are now under Users and Roles > Manage > Private Folders
  • General, Email and Appearance Settings are all under Settings
  • SSO Settings are now under SSO Server > SSO Settings
  • Client Config is now under Advanced > Clients > Client Configuration
  • Password Profiles are now under Advanced > Entries > Password Profiles
  • Current License information is now under License > Status
  • Subscription Settings are now under License > Email Subscription
  • The main Logging page is now under Logging > Logged Events
  • Logging Settings are now under Logging > Event Settings
  • Syslog Config is now under Logging > Syslog Configuration
  • The Security dialog in the Web Client has been renamed to User Access for clarity. The View Security access level permission has been renamed to View User Access to reflect this.
  • The Permissions access level permission has been renamed to Permit Granting for clarity.
  • Added the News Feed and Version Information to License > Status
  • News Feed and New Version Information visibility can be toggled from Settings > Appearance
  • The display of a redirection page can be toggled from Settings > General
  • The number of used and available users is now displayed on Users and Roles > Manage > Users
  • Options in Settings > General warn admin when the number of available seats drops below a set amount.
  • Password Access Report has been renamed to User Access History Report and moved under Access Reports.
  • New Report:
  • Password Access History: Displays all users who have accessed a credential over a given time period.
  • Can also be accessed from Actions > Access History on an Entry in the Web Client.
  • Membership of local Roles can now be edited from Users and Roles > Roles > Actions > Set Users
  • Our Google Authenticator and RADIUS Two-Factor implementations now support Self Enrollment.
  • To enable Self Enrollment:
  • Go to Users and Role > Manage > Policies and click the name of the Policy to enable it for
  • Click the [Configure] link for Google Authenticator or RADIUS (Two Factor Policy section) and make sure "User Can Self-Enroll in this Provider" is checked.
  • Administrators can now specify the full file path for automated backups.
  • This allows backing up to another machine over a network.
  • Restores must still be performed using a database on the machine hosting Password Server.
  • When Blocking Access Inheritance for entries and folders, users will now have the option to add the current access rules directly to the blocked item. They can be deleted once it has been ensured that access has been set up properly.
  • The "Use Password SSO Server" role permission has been phased out. The system will now only check if the user has "Use Via SSO" access to an entry when they attempt to sign in with SSO.
  • Syncing a Directory User will now update their username if it has changed since they were imported
  • In the Web Client, users can now access the Actions menus for Entries and Folders by right-clicking the row in the grid or folder in the tree.
  • Users can now duplicate credentials and folders from the Web Client
  • Report schedules can now only be modified by the user who created them
  • Added clarifying text that reports are generated with the permission of the user who created them. All users receive the same report
  • Report Schedules will now display error messages if changes to the Password Server have invalidated any of the report parameters.
  • Enterprise+ customers can now change the background colour of the Web Client in Settings > Appearance.
  • The temporary placeholder certificate will now use SHA-2. This change does not affect existing certificates. It is recommended that System Admins configure their Password Server with a Self-Signed Certificate or a 3rd Party Certificate
  • Disabled users will no longer appear in the dropdowns for User Access, Comment Settings, Notification Settings
  • Improved Active Directory Performance
  • Improved logging and error handling in Password AutoChanger.
  • Various other improvements and fixes to Web and Keepass client presentation and stability
  • Bug Fixes:
  • Fixed an issue that would require web client users to clear their cache after a server upgrade
  • Server no longer hangs after failure to change an account password
  • Fixed an issue which could prevent using Password Server's Backup and Restore feature to migrate directly from SQLite to a different database type.
  • HTTP SSO can now use different placeholders to distinguish between different credentials for the same site
  • Fixed an issue that could prevent the Web Client from opening a folder with more than 1000 entries
  • Fixed an issue where the Policy rules regarding changes to a user's display name, phone number and email where not being applied for Reset Users
  • All attempts to reset a user's password are now logged whether they succeed or fail. Audit logs of failed attempts will record the username of the account
  • Fixed an issue where users with access to permit other users to Grant access to folders and entries could grant Access Levels containing the following without having the correct Grant access: Grant View User Access, Grant Modify Notification Settings, Grant Modify Comment Settings, Grant Modify Password AutoChange, Grant View Recorded Sessions
  • RDP SSO Server now properly creates the SSO Root Certificate if it does not already exist
  • Fixed an issue where the Launch RDP SSO links were not starting RDP SSO Client. Requires users to update their RDP SSO Client from the SSO Server Status page
  • Changing the sorting in a Folder will no longer cause hidden Custom Field columns to become shown
  • Fixed issues that could prevent viewing and saving of Report Schedules
  • Fixed an issue in our KeePass client where Entries added to a Folder that had just been created by duplicating another Folder would not be pushed to the Server.

New in Pleasant Password Server 7.0.14 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • Attention:
  • Version 7.0.8 disallowed the use of ' / ' characters in Folder and Entry names. Version 7.0.14 contains a database upgrade that will replace the ' / ' characters in existing names with ' \ ' characters. The URLs and password data itself is unaffected.
  • Improvements:
  • Web Client:
  • Improved logging information regarding changes in custom fields.
  • KeePass Client:
  • When importing Entries and Folders that do not fit the Password Server naming conventions, the user will be given the option to have the client rename those Entries and Folders for them.
  • Performance improvements on client start up.
  • Bug Fixed for Existing Features:
  • Fixed some visual bugs in the Web Client in IE.
  • Bug Fixes for New Features:
  • Fixed an issue that would prevent some users from being able to upgrade from pre-version 7 installations.
  • Fixed an issue that would prevent some users from being able to upgrade from version 7.0.10 .
  • Fixed some display issues with larger custom logos.
  • Fixed an issue that would prevent the 'Move Entries' Comment Trigger from being enforced.

New in Pleasant Password Server 7.0.12 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • Improvements:
  • Web Client:
  • Columns for Custom Fields are now hidden by default.
  • Made the UI behavior in the security dialog more consistent when switching between adding Access for Roles, for Users, or for Blocking Inheritance.
  • Password Generation in the Entry Edit dialog has been moved so that everything is in one location. To generate a password, use the dropdown labeled Generate using a password profile and select the profile you would like to use or select Custom to generate a password with different requirements.
  • Bug Fixes
  • Fixed an issue where Yubikey Two-Factor Authentication could not be disabled.
  • Search results in the Web Client are now grouped by folder.
  • Fixed an issue where deleting the STMP configuration from the Settings page and saving it could render the settings page inaccessible.
  • Fixed an issue where the Proxy Unique Identifier for an Entry would be reset after editing

New in Pleasant Password Server 7.0.11 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • Improvements:
  • Server:
  • Improved database space efficiency for server with many file attachments
  • Web Client:
  • Improved Logging message for the assignment of Comment Requirements to a Entry or Folder
  • KeePass Client:
  • Various improvements in KeePass performance
  • Bug Fixes:
  • Fixed an issue that would result in database growing in size too much when Restoring Credentials with file attachments
  • Fixed an issue where Syslog logging could not be disabled once configured
  • Fixed an issue where Syslog logging would ignore the configured Facility

New in Pleasant Password Server 7.0.10 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • Bug Fixes:
  • Fixed an issue that prevented users with Password Server versions lower than 6 from upgrading straight to version 7 releases.
  • Fixed an issue that prevented some MS SQL Server databases from upgrading to version 7

New in Pleasant Password Server 7.0.8 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • Improvements:
  • Web Client:
  • Users can now open the parent folder of Entry from the search results
  • Values of Custom Fields matching the query are now included in the search.
  • Custom Fields grid in the Entry edit dialog can now be navigated with the keyboard.
  • Bug Fixes:
  • Fixed an issue that would result in users seeing duplicate entries in the KeePass Client
  • Fixed an issue where users could not run the KeePass Client for Pleasant Password Server and standard KeePass at the same time.
  • Corrected KeePass import behavior to reject imports containing invalid object names (Folders with no names or Folders and Entry with names containing '/' characters)
  • Web Client will no longer save Folder or Entry names that contain '/' characters, users will be asked to use a different name.

New in Pleasant Password Server 7.0.6 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • Improvements:
  • Web Client:
  • Notification emails now include the comment provided by the user, if comment requirements are enabled.
  • Clicking on a credential's name in the grid will open a read-only view of the credential.
  • Passwords Reports (Strength, Age and Expiry) only show credentials for which the current user has "View Entry Password" permission.
  • Bug Fixes:
  • Fixed an issue where the barcodes generated for Google Authenticator could not be scanned by iOS devices.
  • Fixed an issue where a Comment Trigger on a folder could prevent the folder from being deleted even when a comment was provided.
  • Fixed an issue that could prevent Web Client grid from loading and displaying credentials.
  • Fixed an issue where the KeePass client would ask the user to provide a comment when no usage comment triggers have been configured.
  • Fixed an issue where the Pleasant KeePass Client could not import kdbx files.

New in Pleasant Password Server 7.0.4 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • New Features:
  • Web Client:
  • New Report added
  • Password Strength: Displays all passwords with a strength below a given threshold.
  • Refer to Reports for more information.
  • Mandatory Usage Comments: Improves auditability of credential access
  • Allows Administrators or those with applicable permissions to require users to provide a comment when performing actions such as modifying a credential or viewing a password. The comments are recorded in the Audit Logs.
  • Refer to Usage Comments for more information.
  • Active Directory Password Changing
  • Provide self-serve Active Directory password resets by allowing Password Server to set user passwords in a synced directory
  • Refer to Quick Active Directory and OpenLDAP User Guide for more information
  • SSH Proxy
  • Refer to SSH Proxy for more information
  • KeePass Client (New Version is 6.0.4)
  • Added support for Usage Comments (see above)
  • Improvements:
  • Web Client:
  • Notification sender email configuration now has separate fields for Username and Sender address.
  • Custom Fields have been moved to the Credential Details dialog.
  • We have changed how Custom Fields work in the Web Client to be more consistent with other credential fields.
  • Refer to Custom Fields in 7.0.4 for more information.
  • Bug Fixes:
  • Resolved some Web Client display issues when browsing with IE 9
  • Fixed an issue which prevented users with a private folder from being deleted.
  • Restored link functionality to the URLs on the main Web Client page.

New in Pleasant Password Server 7.0.1 (Jul 20, 2015)

  • Warning For "Latest" Versions
  • Latest versions are intended for:
  • early adopters
  • evaluation of the product based on the latest feature set
  • early access for planning of future deployments or providing Pleasant Solutions with feedback.
  • Latest versions are not ready for large mission-critical deployments, please use the most recent "Stable" version which has been tested much more thoroughly. Features in these Latest versions typically will make their way to Stable versions between 2 weeks and 3 months later.
  • New Features:
  • Web Client:
  • New Reports added
  • Access Frequency Report: Displays all User activity on Pleasant Password Server between the inputted dates.
  • Password Expiry Report: Display all passwords that will expire on or before the inputted date. Refer to
  • Password Age Report: Display all passwords that are older than or equal to the inputted age value (in days).
  • Load Report: Displays information regarding Pleasant Password Server Usage and server load based on the Logging information.
  • Refer to Reports for more information on the above reports.
  • Email Notifications based on Access Levels
  • Allows Administrators or those with applicable permissions to setup automatic Email Notifications when a selected Role and/or User carry out Triggering Actions.
  • Administrators and Users with applicable permission are able to customize Notification Triggers that are used to determine which actions or accesses should trigger a Notification. Notification Triggers are capable of being reused.
  • Refer to Setting Up Notifications for more information.
  • Two factor authentication is now supported on both the web client and KeePass client.
  • Refer to Two-factor Authentication for more information
  • Time limited access: Access to Entries and Folders can now be Granted with a time limit, allowing temporary access that automatically expires based on an inputted time. Can be as short as an hour.
  • Refer to Setting Access Rules for more information.
  • Skinning: Customization of Web Client with Company Name and Logos is now capable through the Settings Page.
  • Refer to Web Client Customization for more information.
  • Logging to SysLog: Password Server can be configured to log events to a SysLog server.
  • Refer to Logging to SysLog for more information
  • KeePass Client:
  • Offline Mode added. It will default to enabled, so upgrading users should disable it if they wish.
  • Improvements:
  • Web Client:
  • Columns on the Entry Table can now be resized and hidden.
  • Restoring Entry from History has been improved to restore all available information from the History Database.
  • Will restore Title, Username, Password, URL, Notes, Expiration Enabled, Expiration date, Custom Fields, and Attached Files.
  • Will not affect Security, Proxy, Notification, or Comment Settings.
  • Refer to Credential History for more information.
  • The web client now supports the ability to add custom fields to entries to match the KeePass Client.
  • The web client now has the ability to attach files to a entry and access files that were attached to a entry by the KeePass Client.
  • It is now possible to drag and drop credentials to change the location of a credential from one folder to another in the webclient.
  • When searching for a specific folder using the search feature it is now possible to click on the folder in the search result to navigate to that folder.
  • The feedback form (accessible from the bottom of the page) has been improved.
  • Support for Open LDAP and AD has improved
  • User management has been improved with more configuration options
  • Password Profiles can be created
  • Lockout Policies can be created, locking or disabling accounts after a set amount of consecutive failed login attempts
  • Two-Factor authentication is now supported
  • Users can have policies directly assigned to them
  • Refer to User Policies for more information.
  • The database connection string placeholder [AppDataRoamingPleasant] has been replaced with [DataFolder] which is represents the sub-path:
  • C:\ProgramData\Pleasant Solutions\Password Server
  • KeePass Client (New Version is 6.0.1)
  • Credential History convenience link added.
  • Bug Fixes:
  • Changing password in KeePass would ignore the servers complexity setting
  • Going to the Admin Site from the KeePass client would direct you to the wrong URL
  • The Desktop Client download page would display the wrong URL
  • Various UI bugs
  • Bugs related to various Active Directory operations should be fixed

New in Pleasant Password Server 6.4.13 (Jul 20, 2015)

  • Improvements - Web Client:
  • Search now returns results that include any one of the words in the query
  • Minor UI improvements
  • Improvements - KeePass for Pleasant Password Server:
  • Client now works in environments with FIPS compliancy enforced
  • Minor UI improvements
  • Changing a password from the KeePass Client now follows the server's password complexity requirements
  • Bug Fix - Web Client:
  • Fixed bug where the Client Download page would display the wrong url for connecting with KeePass and Mobile Clients
  • Fixed bug where items User-Access Report tree would not expand when clicked.
  • Fixed a bug where Crtl+C would not copy a password from the Web Client if the field was focused
  • Bug Fix - KeePass for Pleasant Password Server:
  • Fixed bug which could cause users to inadvertently modify entries when closing the entry dialog

New in Pleasant Password Server 6.4.12 (Jul 20, 2015)

  • Improvements:
  • For new installs, the Block Inheritance permissions has been removed from the "Full + Grant" Access Level as several users have accidentally misused the feature Block Inheritance feature. Existing users should consider disabling the same permission if they do not intend to use it or if they think that some users may be prone to accidental misuse.
  • Entries now sorted by name
  • Clicking on the words "In Use" now brings up a balloon telling you where the Access Level is being used
  • You can now edit the names of Access Levels that are "In Use"
  • You can now delete a Security Permission on yourself if you have at least as much access from another Permission
  • You can now hover over grid items in the web client and read the contents without having to expand the entry
  • Bug Fix:
  • Fixed bug where the enter key would submit the Add Entry dialog
  • Fixed bugs related to password changes done in KeePass for the user's master password
  • Fixed bug where "None" client config rules were being ignored
  • Fixed bug that would cause conflicts using the Proxy service on the hosting machine
  • Fixed unusual KeePass error messages that were a problem in Pleasant KeePass 5.0.1
  • Various minor display issues