Devolutions ForumDevolutions Forum

Version 2026.1.6.0 (March 3, 2026)

Version 2026.1.6.0 (March 3, 2026)

avatar
devolutions-automation

If you are using a client (RDM, PowerShell, etc.), version 2026.1 is required for this DVLS version

NEW FEATURES

  • Core - Added custom vault dashboard widgets with drag-and-drop reordering
  • Core - Added Just-in-Time (JiT) access for SSH (sudo) sessions
  • Core - Added new Contractors account type with expiration date support
  • Core - Added support for SSH key certificates in the web
  • Core - Added vault priority sorting
  • Core - Admins can create preset dashboards for users
  • Core - Licenses can now be purchased directly within DVLS
  • Core - Multiple Improved and fixed with the synchronizer where they was mismatch with RDM
  • Core - Users can now request a trial directly from the application
  • Core - Users can now request sudo access when requesting checkout
  • Gateway - Added RDP credential injection for more secure session launches
  • Gateway - Added traffic event logs to privileged session monitoring
  • PAM - Added MongoDB provider support
  • PAM - Added PowerShell session recording
  • PAM - Added the ability to automatically terminate active sessions when a PAM account is checked in
  • PAM - Added UI to assign and manage risk levels for roles


IMPROVEMENTS

  • Core - Added "Prompt on connection" support for linked VPN/SSH/Gateway sessions, matching the behavior already available for linked credentials
  • Core - Added launch links on connections for quick session sharing
  • Core - Added missing fields in the "Advanced" tab for SFTP connections
  • Core - Added OTP support for linked external vaults
  • Core - Added support for editing Delinea Secret Server entries directly within DVLS
  • Core - Admins can set the default behavior for automatically checking in PAM accounts when closing entries
  • Core - Corrected inaccurate syslog messages that reported successful logins incorrectly
  • Core - Entra ID now enforces secret expiration with banner and email warnings
  • Core - Entry security settings now use inherited values by default
  • Core - Error reports now include connection type details
  • Core - Improve Entry Security Analyzer report to include all relevant fields, matching the information already available in RDM
  • Core - Improved license management — disabling a user now automatically removes their assigned licenses
  • Core - Improved performance for access requests in RDM
  • Core - Linked vaults can now point to entries in the same folder
  • Core - Public API now supports CRUD operations for folders and vaults
  • Core - Renamed Log Retention Policies to Database Retention Policies and added retention options for connection history, remote sessions, and traffic events
  • Core - Simplified license assignment in data sources
  • Core - Synchronizers now support scheduling by hour
  • Core - Tags can now be used with inheritance rules
  • Core - The public API now supports full CRUD operations for vaults, allowing administrators to create, read, update, and delete vaults programmatically
  • Core - Users can now configure multiple MFA methods at once
  • Gateway - Renamed "Virtual Gateway" to "Gateway ruleset"
  • Gateway - Sessions can now be recorded on a different gateway than the launch gateway
  • Gateway - The Gateway Diagnostic window now displays whether Devolutions Agent is installed and running
  • Gateway - The gateway list now automatically refreshes after an update request completes
  • PAM - Added "Create folder" option when importing PAM accounts
  • PAM - Added "Skip TLS validation" option in PowerShell provider settings
  • PAM - Added "Workspace" as a supported application option in the PAM usage policies admin section
  • PAM - Improved error message when no provider is specified on a PAM account
  • PAM - Renamed "Scan" to "Account Discovery"
  • PAM - Users without a PAM license can now perform basic PAM operations, such as checking out PAM credentials, without requiring a full PAM license Assignment
  • Web - Added a warning in the web interface when an OTP account name contains a colon (":"), consistent with existing behavior in RDM
  • Web - Administrators can now set permissions on entry types that are not technically supported on the web
  • Web - Users can now customize the "Add connection" favorites section
  • Web Client - Multiple UI improvements
  • Web Client - Updated dark theme


FIXES

  • Core - Fixed a regression where it was no longer possible to set a user as an administrator
  • Core - Fixed a scheduler timeout error that could cause scheduled tasks to fail intermittently
  • Core - Fixed an error occurring when too many vaults were present
  • Core - Fixed an error that occurred when editing account login information on a deprecated entry type
  • Core - Fixed an issue where exported logs from the DVLS Console were being cropped and truncated
  • Core - Fixed an issue where forbidden passwords could still be saved in a password list entry
  • Core - Fixed an issue where new Active Directory user accounts were not appearing in DVLS, preventing the auto-create on first login feature from Working correctly
  • Core - Fixed an issue where OAuth token rejections were incorrectly returning HTTP 200 with an empty response instead of a proper error code
  • Core - Fixed duplicate vault cards appearing on the dashboard
  • Core - Fixed notification emails being sent in English for users configured in French
  • Core - Fixed repeated migration attempts after SQL migration and server restart
  • Gateway - Fixed a issue where clicking "Close" from the session kebab menu did not always close the session on the first attempt
  • Gateway - Fixed a missing configuration option in the Web UI for allowing additional hosts through Devolutions Gateway
  • Gateway - Fixed an inconsistency in how Gateway tunnels were configured and displayed between RDM and the Web UI
  • Gateway - Fixed an issue where enabling vault-level security on a gateway prevented it from being used in gateway farms and PAM providers
  • Gateway - Fixed an issue where virtual gateways were not automatically deleted when their associated physical gateway was removed, leaving orphaned entries that no longer functioned
  • PAM - Fixed "Nobody" account appearing when "Ignore system users" was enabled
  • PAM - Fixed a security issue where non-administrator users could view other users' PAM actions in the Privileged Access logs
  • PAM - Fixed account discovery failure caused by circular security group membership
  • PAM - Fixed an error that occurred when attempting to add a folder to a newly created PAM vault during the import process
  • PAM - Fixed an issue where Domain Quick Scan was no longer working
  • PAM - Fixed an issue where groups located in the Builtin organizational unit were not visible when selecting groups for JIT (Just-In-Time) elevation
  • PAM - Fixed Local Windows scan failure when credentials were linked
  • PAM - Fixed SSH scan failure when sudo was configured with NOPASSWORD
  • Web - Fixed inconsistent rendering of secure notes set as Markdown across different platforms
  • Web - Fixed the Notification Subscriptions filter not working correctly
  • Web - Multiple UI fixes


** CONSOLE RELEASE NOTES **

IMPROVEMENTS

  • Core - Improved performance for static resource loading by enabling HTTP/2 support when anonymous authentication is configured in IIS
  • Core - Renamed the "Stable" release channel to "Extended maintenance" in the console to better reflect its support lifecycle
  • Gateway - Added a new System Certificate Store configuration key for Devolutions Gateway in the console


FIXES

  • Core - Fixed basic installation failure when a generated password contained a single quote (')
  • Gateway - Fixed an issue in the console where certificate configuration was cleared when editing a gateway, requiring users to re-enter the certificate

All Comments (0)