New Veridium Windows components implement client support for new functionalities and fixes for known issues:
Credential Provider:
New features:
-
Added support for certificate authentication
-
Allow users to authenticate using a password when user is not yet onboarded to Veridium. To Enable this feature, we need to set registry key: AllowPasswordAuthForNonOnboardedUsers:DWORD=1
-
Added support for the new PIN length change campaign functionality.
-
Improved protection of SSO Tokens (SAML or OIDC) in correlation with Windows login and browser user session.
-
QR code can be automatically renewed when AutoRefreshQR:DWORD=1
-
There is a option on RDP to enforce to use Veridium CP for incoming authentication calls.
-
There is a new option for retry mechanism for communication between CP and Bops Logon service. New registry keys are introduced to control number of retries and delay between them (in ms):
-
BopsLogonServiceDelay:DWORD=400
-
BopsLogonServiceRetryCount:DWORD=5
-
Bug fixing:
-
fixed an issue in Credential Provider where users could log in using Yubico OTP authentication method even if the User Pin provided was incorrect (user auth, policy, security)
-
Fixed a bug in Credential Provider that caused a QR freeze of the QR Offline authentication method was user in Shell Extension (user auth)
-
Fixed the bug - user can not mix offline authentication types - between QR Offline and FIDO Offline
-
Fixed a bug that caused Offline QR authentications to not be counted against the maximum retry parameter value.
-
QR Offline sessions are correctly shown on Veridium Server once user gets online again.
-
“See Text” button is now available also in Password change form
-
Session expired feature is now available also for External token authentication
-
The box for the lost code input is now cleared after a failed authentication
-
“Skip” button in PIN change campaign did not allow user to authenticate afterwards.
-
Fixed a bug when BOPS_URL is reachable but not correct), CP switched to QR offline instead of using BOPS_EXTERNAL link
RAEP:
-
RA supports 4k keys on EJBCA
-
Support of Build attributes from AD (not accepting attributes from certificate request) on Microsoft CA
Packages
Windows Credential Provider v.3.7 build 283:
|
Filename |
md5 |
Description |
|---|---|---|
|
b5a748a771ee21ce035f4e879614dcc4 |
Windows Credential Provider 64bit |
|
|
b35a656dddd763b6d53a1249a0cf68b7 |
RAEP GUI Installer |
|
|
c0aaf13a7da62a7e31072053f402d970 |
Citrix Installer |