AuthPoint Agent Releases

Enhancements

• The agent now supports European Spanish. [AAAS-15715]
• Resolved an issue that caused QR code authentication to not work when you authenticated without an Interntet connection. [AAAS-16834, AAAS-21517]
• Resolved an issue that damaged the agent for macOS installation files when a computer is upgraded from Monterey (12.x) to Ventura (13.x). [AAAS-20149]
• Minor bug fixes and improvements. [AAAS-14967, AAAS-14848, AAAS-17080, AAAS-20216, AAAS-20950]

Enhancements

• The updated AuthPoint Logon app (agent for macOS) now supports macOS Monterey (12.x).

Enhancements

• The updated AuthPoint Logon app (agent for macOS) now supports macOS Big Sur (11.x).
• Updated the error message that is shown when users who have an authentication policy that does not allow access to the Logon app attempt to authenticate without an Internet connection. [AAAS-13623]

Enhancements and Resolved Issues

• The AuthPoint Logon app (agent for macOS) has been updated to version 1.10.0 to support the new risk framework features. This version also resolves several minor bugs and known issues.
  • When you select the Forgot Token option, you can now click How to active Forgot Token mode for help. [AAAS-10141]
  • If you enable the Forgot Token feature on the agent for macOS, it is now automatically disabled if you authenticate with MFA (you use an OTP, approve a push, or scan a QR code) since this indicates that you have regained access to your token. [AAAS-11766]
  • If you enable the Forgot Token feature, you can now successfully log in without MFA even when then computer cannot connect to AuthPoint. [AAAS-11783]
  • If you enable the Forgot Token feature, the agent for macOS no longer disables Forgot Token mode when you connect to the Internet. [AAAS-13101]
  • You can now successfully authenticate and log in offline when you have an authentication policy that only requires a password. [AAAS-13153]

New Features

The AuthPoint Logon app (agent for macOS) has been updated to version 1.9.0. With the updated agent for macOS, you can now allow specific users who do not have an AuthPoint user account to log in without MFA (this feature was previously limited to the agent for Windows). Another new feature is that the agent now automatically sends a push notification to users after they type their user name and password. Users can disable this feature.

Enhancements

• Blocked user accounts now see an error message when they attempt to log in without an Internet connection. [AAAS-11593]

Enhancements

• The AuthPoint Logon app (agent for macOS) has been updated to version 1.8.0. The updated agent is now available in these languages:
  • Chinese (China)
  • Chinese (Taiwan)
  • Dutch
  • English
  • French
  • German
  • Italian
  • Japanese
  • Korean
  • Portuguese (Brazil)
  • Portuguese (Portugal)
  • Spanish
  • Thai

Enhancements

• The updated AuthPoint Logon app (agent for macOS) now supports macOS Catalina (10.15).

New Features

The AuthPoint Logon App (agent for Windows) version 3.1.0 is now publicly available. The new agent for Windows v3.1.0 now supports MFA for Windows User Account Control (UAC). When UAC is enabled on a Windows computer and a user tries to perform an action that requires administrative privileges, such as allowing an app to make changes to the device, the UAC prompt now requires the user to authenticate with MFA as well as provide their password.

The updated agent for Windows also includes minor bug fixes and improvements.

New Features

The AuthPoint Logon App (agent for Windows) version 3.0.1 is now publicly available. The new agent for Windows v3.0.1 now includes support for Windows Hello.

• Windows Hello enables users to log in with a PIN, facial recognition, or fingerprint in place of a password.
• Combined with AuthPoint MFA, this makes the login process for protected machines easier and more secure.

Resolved Issues

• The AuthPoint Logon app (agent for Windows) now supports Windows Hello. [AAAS-14140]
• When you open an RDP connection, audio on your computer is now muted correctly. [AAAS-18323]
• When you authenticate with the Logon app on a computer that runs Windows 11, the details for push notification and QR codes now correctly show the operating system as Windows 11. [AAAS-19104]
• Increased the number of authentication attempts allowed for Azure Active Directory user accounts to resolve an issue where user accounts could become prematurely locked. [AAAS-12645]
• When you open an RDP connection to a computer that runs Windows 8.1 or Windows Server 2012R2 and has the Logon app installed, the MFA page now displays immediately after you enter your password. [AAAS-17904]
• Resolved an issue that enabled Azure AD user accounts that were locked out to log on locally without MFA to computers with the Logon app v2.8.2 or lower installed. [AAAS-16626]
• Resolved an issue that caused some RDP connections to show a blank screen with no logon options when the computer became locked. [AAAS-19226]
• Resolved an issue where deactivated Active Directory users could log in to a computer with the agent for Windows installed without MFA (user name and password are still required). [AAAS-11726]

Resolved Issues

• The AuthPoint agent for Windows has been updated to v2.8.2.514. This release resolves an issue that caused the Logon app to freeze after a push notification is sent. [AAAS-17644, AAAS-18385]

Enhancements

• The AuthPoint Logon app (agent for Windows) has been updated to v2.8.0.511. This release resolves a signing issue with the previous version of the software. [AAAS-19072]

New Features

The AuthPoint Logon App (agent for Windows) has been updated to version 2.8.0. We’ve redesigned the new agent for Windows to give you more control over how the agent handles logins from users that do not have an AuthPoint user account. When you configure the Logon App resource in AuthPoint, you can now choose from these options:

• Do not allow non-AuthPoint users
• Allow specific non-AuthPoint users to log in without MFA
• Allow all non-AuthPoint users to log in without MFA

Previously, you could only allow up to 50 specific non-AuthPoint users to log in to computers or servers with the agent for Windows installed.

Enhancements and Resolved Issues

• The agent for Windows now displays a configuration error if the configuration file is missing. [AAAS-16558, AAAS-17688]
• The agent for Windows now displays the option to automatically send push notifications on the MFA page in all supported languages. [AAAS-16627]
• The agent for Windows now correctly identifies the source IP address of incoming RDP connections when multiple users are logged into the same Windows host. [AAAS-15034, AAAS-16686]
• The agent for Windows now displays correctly on computers with 4K resolution displays. [AAAS-18027]
• The agent for Windows now limits the size of the local authentication policy cache. This improves response times and stability when the agent is installed on a terminal server. [AAAS-12197]

Enhancements

• The AuthPoint Logon app (agent for Windows) has been updated to version 2.7.1 to support the new geofence policy objects.

Enhancements

• The AuthPoint Logon App (agent for Windows) has been updated to version 2.6.0. The updated agent for Windows has improved how AuthPoint identifies the IP address for RD Gateway authentications that involve a network location.

Enhancements and Resolved Issues

• The AuthPoint Logon app (agent for Windows) has been updated to version 2.5.1 to support the new risk framework features. This version also resolves several minor bugs and known issues.
  • On Windows 10 machines, domain users with an expired password can now successfully set a new password and log in. [AAAS-12490]
  • Resolved an issue where users on a specific domain could log in with only password. [AAAS-12877, AAAS-13193]
  • MFA is now required for users that are members of the Protected Users security group in Active Directory. [AAAS-12984]
  • Resolved an issue where certain Microsoft errors would not cause the Logon app to show the MFA screen. MFA is now required when this happens. [AAAS-13129]
  • When you use RDP to connect to a server, AuthPoint uses the end user IP address for network locations (previously called safe locations). When the connection is done through RD Gateway, AuthPoint uses the IP address of the RD Gateway server. [AAAS-13074]
  • Resolved an issue where some users that have an account name (sAMAccount name) configured as firstname.last name got a "User not found" error message when they used the Logon app. [AAAS-13257]
  • Users can now successfully use the user principal name (user@domain) to authenticate with RDP to a computer with the Logon app installed. [AAAS-13483]

New Features

The AuthPoint Logon app (agent for Windows) has been updated to version 2.4.2. The updated agent for Windows now automatically sends a push notification to users after they type their user name and password. Users can disable this feature.

Safe locations now support private IP addresses for Remote Desktop Protocol (RDP) connections.

Resolved Issues

• The Logon app (agent for Windows) has been updated to version 2.3.1 to address a bug. This update reverts the functionality of the agent to version 2.2. The updates made for version 2.3.0 have been removed.

Enhancements and Resolved Issues

• The agent for Windows now supports safe locations for RD Gateway connections that use port 443. [AAAS-11613]
• You can now successfully use an NCP client to connect to a VPN before you log in to your computer. [AAAS-11454]

Enhancements

• The updated version of the agent for Windows supports safe locations for RDP. [AAAS-9669]
• The agent for Windows is now available in these languages:
  • Chinese (China)
  • Chinese (Taiwan)
  • Dutch
  • English
  • French
  • German
  • Italian
  • Japanese
  • Korean
  • Portuguese (Brazil)
  • Portuguese (Portugal)
  • Spanish
  • Thai

New Features

The Logon app (agent for Windows) has been updated to version 2.1.3. With the updated version of the Logon app, you can configure the Logon app to allow users that do not have an AuthPoint user account to log in without MFA. When you install the Logon app with the command line, you can now pass the path or content of the configuration file as a parameter.

Enhancements

• The AuthPoint Gateway now supports the Message-Authenticator attribute in requests and responses. This attribute protects from exploits such as Blast-RADIUS (CVE-2024-3596). To require the Message-Authenticator attribute with a Firebox, the Firebox must run Fireware v12.11.1 or higher. [AAAS-23583, AAAS-24541]
• You can now successfully install the AuthPoint Gateway on endpoints that have WatchGuard EPDR installed. [AAAS-24891]
• The AuthPoint Gateway now has a mechanism to block authentication requests from unknown users. [AAAS-24769]

Enhancements

• This release includes minor bug fixes and improvements. [AAAS-22745, AAAS-22799, AAAS-2280]

Enhancements

• This release includes minor bug fixes. [AAAS-21312, AAAS-21313, AAAS-21360, AAAS-21361]

Enhancements

• This release includes minor bug fixes. [AAAS-19660, AAAS-19712]

Enhancements

• You can no longer install a version of the Gateway that is already installed. [AAAS-18963]
• Resolved an issue that prevented AuthPoint from syncing users from an OpenLDAP server when you configure the Main attribute to the LDAP user in your external identity to use the same value as another attribute, such as Attribute related to the user login. [AAAS-18962]
• If you try to install the Gateway on a server that does not have Java, the installation wizard now includes a recommendation for Amazon Corretto 15 (in addition to Corretto 8 and 11). [AAAS-19165]
• Resolved an issue that caused the connection test for external identities to indicate a successful connection, even when the source IP address for the external identity was not correct. [AAAS-19271]
• AuthPoint now shows an error message when you add an advanced query for an external identity that AuthPoint cannot connect to. [AAAS-19273]

Enhancements

• The AuthPoint Gateway version 7.1 is now publicly available. This new version includes performance improvements and minor bug fixes.

Enhancements

• The updated Gateway supports the Amazon Corretto 15 feature release (in addition to Corretto 8 and 11) and includes performance improvements and minor bug fixes. The Gateway also has a new heuristic to handle connection issues.

Resolved Issues

• Resolved an issue that caused the authentication for ADFS through the AuthPoint Gateway to time out after 5 seconds. [AAAS-14292]

Enhancements and Resolved Issues

• The AuthPoint Gateway has been updated to version 6.1.0 to support the new risk framework features. This version also resolves several minor bugs and known issues.
  • Local AuthPoint users can now successfully authenticate to MS-CHAPv2 RADIUS client resources that use the email attribute for the filter-ID value. [AAAS-11867]
  • The RADIUS shared secret is no longer exposed when the RADIUS service is set to the debug logging level. [AAAS-12172]
  • You can now successfully configure a group sync to sync users from the Domain Users group in Active Directory. [AAAS-12740]
  • When you make changes to the Redundant Address for external identities, the Gateway LDAP embedded DB is now updated. [AAAS-9633]
  • Resolved an issue that caused a transaction timeout for LDAP syncs. [AAAS-12936]
  • Minor bug fixes and improvements. [AAAS-7304]

Enhancements

• The updated AuthPoint Gateway supports Java 11 and Amazon Correto 11 and offers performance improvements.

Resolved Issues

• Resolved an issue that prevented AuthPoint from syncing LDAP users at the expected synchronization interval. [AAAS-10574]

Resolved Issues

• AuthPoint now correctly syncs users for external identities that are configured to sync every 24 hours. [AAAS-10023]
• Resolved an issue that caused the Gateway service to stop. [AAAS-10032]
• Fixed a typo that appeared in the Gateway log messages for connectivity tests. [AAAS-10224]

Resolved Issues

• This release includes minor bug fixes.

Enhancements and Resolved Issues

• The AuthPoint agent for RD Web has been updated to version 1.2.5. The updated agent includes security improvements and requires v4.8 or higher of .NET Framework. [AAAS-15474
• You can no longer bypass MFA by manually setting certain cookies. , AAAS-16050

Enhancements

• The AuthPoint agent for RD Web has been updated to version 1.2.4 to support the new geofence policy objects.

Resolved Issues

• You can now successfully authenticate to the RD Web page with Chrome v90 or higher. [AAAS-14625]
• This version resolves an issue that caused RD Web authentication sessions to only last 2 hours. [AAAS-14242]

Enhancements

• The agent for RD Web is now available in these languages:

  • Chinese (China)
  • Chinese (Taiwan)
  • Dutch
  • English
  • French
  • German
  • Italian
  • Japanese
  • Korean
  • Portuguese (Brazil)
  • Portuguese (Portugal)
  • Spanish
  • Thai

Enhancements

• This release resolves a signing issue with the previous version of the software. [AAAS-17640]

Enhancements

• The AuthPoint agent for ADFS has been updated to version 1.2.0 to support the new geofence policy objects.