Spring (Q2) 2024 Release

Secret Server on Platform

QuantumLock: Quantum Safe Kyber encryption to secrets

  • Prepare sensitive secrets for the growing risk of Quantum Computing.

  • Defend against "Harvest Now – Decrypt Later" attacks.

Remote Access Service (RAS)

  • Background multi-file uploads: Queue files for upload, continue remote work while files transfer in background automatically.

  • File Transfers to RDP targets.

    • Support for SMB (v2 & v3) with Windows targets.

    • If both SFTP and SMB services are available on the target, RAS will use SFTP (more secure overall). If only SMB is available, RAS will automatically use it instead.

  • Keyboard layout support: Easily switch keyboard layouts to match the keyboard layouts configured on target machines.

  • Session Connector

    • Configure essential applications for RAS users and limit access to only what’s needed

    • Inject Secret Server credentials into running applications

  • Connection Info: Access to connection information (such as engine in use, target machine…etc.) for easy identification and troubleshooting when needed.

  • Accessibility Improvements: Keyboard can activate and operate RAS menu during remote connections.

  • Masked Clipboard for Sensitive Content: Mask sensitive content when using clipboard for data exchange.

Connection Manager (CM)

External Browser Authentication enables users to authenticate to the Delinea Platform through an external browser. This feature facilitates the reuse of existing logins, password managers, and advanced functionalities such as biometric MFA, FIDO2 support, and conditional access configurations with their chosen identity provider.

Inventory

Inventory is now generally available, offering users a new interface to view and remotely connect to target machines, utilizing:

  • My Account: Users can log in to enrolled Linux systems with their Delinea Platform account, either via the platform or through native applications using SSH, SCP, or SFTP.

  • Vaulted Credentials: Users can access any target system in the Delinea Platform using vaulted credentials from Secret Server.

  • Manually Entered Credentials: Users can manually log in to target systems with valid username and password.

Audit

  • Audit Logging is now generally available, supporting audit events from various services:

    • Secret Server

    • Remote Access Service

    • Permission Service

    • Audit Collector (included in Privilege Control for Servers)

    • Policy Service

    • Federation Service

  • Sharing of recordings: Share links to recordings (with specific timestamps) with other users on the platform.

  • Terminate Live Remote Sessions: Available for Remote Access Service and Secret Server.

Marketplace & Integrations

  • Launch of the Delinea.com Integrations Center

  • Addition of Community-provided integrations: These are scripts developed by external contributors and hosted on Delinea's GitHub repository. They are not officially maintained by our development team and are provided "as is" with no guarantees on performance or compatibility.

  • New and updated integrations:

    • SNOW MID Server 4.5

    • JDBC Proxy Driver 3.0

    • Rapid7 Insight VM Integration with Secret Server for Shared credential Sync

    • SCIM Release 4.4.4

    • Terraform 2.0.4/2.0.5

    • UiPath 2.6.0

  • New Download Center (currently limited to Privilege Control for Servers customers)

  • Enhanced user experience:

    • Updates to certification and vendor filters

    • Improved support for light and dark mode

  • Significantly increased the number of integrated vendors.

Identity & Federation

  • Add bulk users to the local directory: This feature allows administrators to import a large number of user accounts simultaneously, streamlining the process instead of adding users manually to the Delinea Directory one by one.

  • MFA for federated users (private preview): Federated users can be challenged for additional MFA within the platform: This includes platform user log on and any browser-based step-up MFA, such as secret access.

  • Ability to map a large number (beyond the previous limit of 100) of identity provider groups to platform groups.

Engine Management

  • Engine Management is now available for general use.

  • Support for two Privilege Control for Server (PCS) workloads: Command Relay and Audit Collector.

  • Engine auto-upgrade to new versions and remote uninstallation are now supported.

  • Utilize vaulted accounts within workload management settings.

Privilege Control for Servers

Introduction of the 'Require Session Recording' rule to manage recording during endpoint login and privilege elevation via policy, ensuring that login or elevation is prevented if host-based recording is cannot be initiated.

Delinea Mobile App

In Delinea Mobile 2.3 release, Offline Caching was introduced, aligning with the existing feature in our Secret Server Mobile app. This release offers:

  • Single Secret downloads

  • Consolidated offline view

  • Expiration indicator

  • New “Download” filter

  • Download indicators per secret

Web Password Filler (WPF)

TOTP support was introduced in 3.9 release. With this update, you can generate and copy TOTP codes directly from the WPF browser extension. The code length is adjustable by the admin and operates on a 30-second loop.

Other updates

  • New navigation interface offers a use-case-centric view of our platform services, with content categorized to reflect service relationships. This enhanced experience offers:

    • Simplified navigation for common use cases.

    • Ability to access available pages without redirection.

    • Customizability with expanded/collapsed views.

    • Swift access to frequently used features.

  • The global platform search (private preview) has been updated to deliver more results, encompassing Assets & Marketplace outcomes, along with content. Content searches now include page titles and descriptions, enabling streamlined access to most products from a single search query.

    • Access all items from a single-entry point, minimizing menu navigation.

    • Uncover pertinent configurations based on keyword searches.

  • Improved uptime SLA for platform now 99.99%. More information can be found on https://delinea.com/sla

  • New Trust Center - https://trust.delinea.com/

    • Get Trust Center Updates in your inbox.

    • Access compliance documents such as ISO 27001 and SOC2 reports.

    • Stay informed about published vulnerabilities and their fixes.

    • Submit and report vulnerabilities.