1. Update List - Visual-Guard 2024.3

  1. MFA Validate Operation (for business actions)

A process in Visual Guard where Multi-Factor Authentication (MFA) is required to authorize specific business actions. This ensures that critical operations are executed only after verifying the user’s identity through multiple authentication methods, enhancing security for sensitive tasks within applications.

Purpose of MFA Validation:

  • This process is designed to strengthen the security around critical business functions, especially those that involve sensitive or high-impact operations, by requiring users to authenticate using multiple methods. For example, it might involve entering a password and then confirming via a one-time code sent to a mobile device.
  • Visual Guard’s MFA validation can be applied to specific actions, adding an additional layer of security when a user performs tasks like approving transactions, accessing confidential data, or executing administrative commands.

Benefits of using this feature:

  • Enhanced Security: Protects sensitive business operations by requiring additional authentication layers, reducing unauthorized access risks.
  • Compliance Support: Helps meet regulatory and compliance standards by safeguarding critical actions with strong identity verification.
  • User Accountability: Creates a clear audit trail by linking actions to authenticated users, improving traceability for critical operations.
  • Risk Mitigation: Minimizes the potential impact of compromised credentials by requiring multifactor checks before high-risk actions.
  • Operational Flexibility: Allows for selective application of MFA to specific actions, balancing security needs with user convenience.

2. Performance improvement for private connections

The latest VisualGuard release significantly improves the performance of private connections to the VisualGuard repository.

What is a private connection?The VisualGuard Identity Server enables your application to securely connect to the Identity Server, which in turn accesses the database repository to retrieve user security data. This architecture enhances security by isolating your application from direct database access. We refer to this secure connection as a private connection.

You can configure a private connection between your application and the VisualGuard Identity Server using secure protocols such as HTTPS, HTTP, and gRPC. This optimization directly impacts the secure communication pipeline between your application and the VisualGuard Identity Server. By employing industry-standard protocols such as HTTPS, HTTP, and gRPC, you can establish a highly secure and efficient data transfer channel. This refined architecture safeguards sensitive user security data while accelerating response times and overall system performance.

    Benefits of using a private connection:

    • Enhanced Data Security: A private connection isolates data from public networks, reducing the risk of interception and unauthorized access, essential for handling sensitive information securely.
    • Controlled Access: Only authorized systems and users within the private network can access the Visual Guard Identity Server, enhancing control over who can interact with identity management resources.
    • Improved Performance: Private connections can offer lower latency and more stable bandwidth, resulting in faster, more reliable authentication processes, especially for high-transaction environments.
    • Compliance Support: Many regulatory frameworks require secure, private data channels, so using a private connection can help meet compliance standards more easily.
    • Reduced Exposure to Threats: By limiting access to private network users, the potential for attacks from external threats is significantly minimized.

    2. Update List - Visual-Guard 2024.2

    Winconsole

    In the new version of Visual Guard, we are introducing Azure Entra as an advanced feature to enhance identity and access management. Azure Entra is Microsoft’s unified identity and access platform, designed to protect identities and ensure secure access to resources.

    Benefits of Azure Entra Integration:

    • Enhanced Security: Leveraging Azure Entra’s robust security features ensures that only authenticated and authorized users can access sensitive applications.
    • Improved User Experience: The integration of SSO and seamless MFA provides a frictionless experience for users while maintaining high security standards.
    • Scalability and Flexibility: Organizations can scale identity management effortlessly, catering to both on-premises and cloud-based applications.
    • Advanced Access Control: With conditional access, organizations can tailor security policies based on real-time risk assessments.

    Key Aspects of Azure Entra Integration:

    1. Seamless Integration with Visual Guard: Azure Entra allows for streamlined user authentication by integrating with Visual Guard, enhancing the way applications authenticate and authorize users.
    2. Multi-Factor Authentication (MFA): Azure Entra brings enhanced Visual Guard MFA capabilities, adding an extra layer of security with identity verification methods like TOTP, and OTP.
    3. Conditional Access: It supports advanced access controls based on user risk, device state, and session context, providing administrators with better control over access policies.
    4. Single Sign-On (SSO): Users can now access multiple applications within the Visual Guard ecosystem with a single set of credentials, simplifying the user experience and reducing password fatigue.
    5. Compliance and Governance: With Azure Entra, Visual Guard can better support compliance with security regulations through detailed auditing and reporting tools.

    3. Update List - Visual-Guard 2020.X

    Update list of Visual-Guard

    New Features

    VG Angular

    We have upgraded our framework to Angular version 15. This upgrade enhances performance and security.


    API Documentation

    We have published new API documentations on Postman. These documentations will aid developers in understanding how to use our APIs more efficiently.


    MFA Azure Front Door

    We added a “no-store” cache control header to the response of MFA Azure Front Door. This will help to ensure that sensitive data is not stored in the browser’s cache.

    WinConsole Repository Connection

    The WinConsole can now connect to the VGIdentityServer. This will allow better integration between these two components.

    WebConsole Attendance Monitoring

    Modifications have been made to the calendar control for tracking attendance hours. This will help to improve time tracking accuracy.


    Web Console Role Deletion

     The “Delete Role” option has been moved to the bottom menu in the WebConsole for better ergonomics.


    Web Console: Loading Icon

    A loading icon has been added to the workflow data monitor in the WebConsole to indicate when data is being loaded.


    WebConsole: Workflow Settings Improvement

    The last execution time of VGWorkFlowServer has been added to the WebConsole settings. This will allow users to see when the workflow server was last run.


    IdentityServer Configuration

    Several configuration changes have been made to the IdentityServer and new properties have been added to the WinConsole settings. This allows for more flexible configuration of the IdentityServer.


    Angular Documentation

    The Angular integration documentation has been updated for Oriolis VG 2019.2. This update will provide more recent information on Angular integration.


    VG SAAS UI Update

    The UI of VG TRIAL SAAS has been updated to include left-hand margins, clickable titles that open in new windows, a separator below the ProgressBar, and CSS changes on button click. This improves the overall user experience.


    VG Runtime

    The system has been upgraded to version 4.6. This upgrade brings security and performance improvements.


    Password Policy Comment

     A comment has been added for the Auto-Unclock feature in the password policy. This gives users a better understanding of this feature.

    Bug Fixes

    WebConsole | Monitoring | Graph

    The graph display for a 15-month range has been fixed. The graph no longer reverts to only two bars.


    Documentation

     Fixed the bug where the eazydocs_get_option() function was not found. This solved an issue with the documentation site’s theme.


    Oracle Migration

    Fixed migration errors from 2019.2 to 2020.3 in oracle repositories. Users will no longer see error messages when logging in.


    VGSecurityRuntime VGUser Creation

    Fixed an issue that prevented creating a second VGUser in a new SQL repository without a license. The incorrect error message will no longer appear.


    Authentication Modes

    Fixed differences in authentication mode selection when adding a new repository in WinConsole and WebConsole. The options will now be consistent between the two.


    VG Security Runtime

    • Password Less Authentication Module
    • MFA Visual-Guard for Visual-Guard User

    VG WinConsole

    • Add the license MFA

    VG WebConsole

    • Improve EventViewer Export to Excel
    • Delete application
    • Add support of Smtp Office 365

    VG Identity Server

    • LoadBalancing support
      • The IdentityServer can support the multi-instance
    • Config External Account
    • Support GRPC V1
    • Support GRPC V2

    Bugs

    • Improve maintenance operation
    • Fix a bug to connect by IdentityServer
    • Separate Authentication from the Workflow Server

    VG Security Runtime

    • Improve create permission for PowerServer
    • Improve VGTrace for the SubIdentities
    • Add VGGroup and advanced functionality in PermissionMatrix
    • Add new VGDistributedTransient entity for the load balancing

    VG WinConsole

    • Improve with VGGroup and Advanced options to generate Permission Matrix
    • Add permission Matrix on App , Role, User
    • Create PowerServer permission
    • Reload all components PBTarget
    • Search User use contains by default
    • Add export to Excel on VGGroup and VGRole
    • Improve UI Identity Server
    • Add progress bar when we deploy a repository
    • Add a progress bar when we import the deploy file on the repository
    • Identity Client Entity add the CORS

    VG Webconsole

    • Migration to .Net Core 3.1
      • The WebConsole is less time the response, better performance
    • Rename an VGApplication
      • Now, you can rename the application from the VGWebConsole
    • Create Permission for PowerServer
    • Export to excel added on events logs
    • Improve the View permissions with the name
    • Generate Permission Matrix
    • User search use contains by default
    • Generate file configuration
    • See the VGLicense
    • Select the language for WindowsSSO User
    • PowerServer Add relationship between DataWindows / Tables
    • Add Actions of the permission selected
    • Improve the monitoring to make easy selection

    Bugs

    • Add Waiting cursor on the monitoring graph

    VG Identity Server

    • Create new API
      • ChangePassword()
      • ForcePassword()
      • WriteLog()
      • GetCurrentPermissions()
      • GetCurrentRoles()
      • SetProfileAttribute()
      • GetProfileAttribute()
      • GetAllRoles()
      • Grant and Revoke Role
    • Connect to the VGRepository by SqlServer Load the database list

    VG Security Runtime

    • Support of .NET Core
      • We support .net by the new assembly Novalys.VisualGuard.Security.Core
    • Generate Permission Matrix
    • Identity Server Client Connection (HTTPS Mode)
    • Connection between VGSecurityRuntime to VGIdentityServer
    • Integration to PowerServer 2021
    • Identity Server entity
    • Identity Client entity multiple configuration

    VG WinConsole


    VG WebConsole


    VG Identity Server