Features and Improvements

• PAM-16, PAM-5, PAM-18: New user interface with Keeper branding

• PAM-15: Automatically trim trailing whitespace from guacamole.properties

• PAM-6: Add SSH support for ECDSA and ED25519 keys

• PAM-4: Add encrypted vault storage plugin for Keeper Secrets Manager

• PAM-20: Migrate to Gitbook for documentation

Version 2.9.0 introduces the world to Keeper Connection Manager.

Also, we are proud to announce support for MySQL connections. Easily add database connections to the Keeper Connection Manager platform to secure and protect MySQL databases. Session recording, privileged access management and secrets management capabilities apply to the MySQL connection type.

Features & Improvements

• PRIV-80: Remove file upload limit from SSL termination image

• PRIV-72: Allow installer to be run as an https stream

• PRIV-79: Rebranding of Glyptodon installer to KCM

• PRIV-67: Rebranding of Glyptodon UI to KCM

• PRIV-81: Auto-generate secure credentials for "guacadmin" user

• PRIV-63: Add support for MySQL connection types

• PRIV-55: Disable legacy TLS protocols/ciphers by default

• PRIV-56: Allow custom CSP and HSTS headers to be configured

Features

• PRIV-149: Support for Domain parameter in Vault integration for Windows logins See: https://docs.keeper.io/keeper-connection-manager/vault-integration/dynamic-tokens#windows-username-domain-parsing

• PRIV-74: Added small margin to SSH connection windows

• PRIV-165: Accept a one-time token for UI-based KSM configuration

• PRIV-108: Added support for multiple KSM applications (at the Connection Group Level)

• PRIV-157: Added support for custom LDAP Root Certificate

• PRIV-160: Added support for signed SAML requests

Bug Fixes

• PRIV-161: Kubernetes support missing from guacd Docker image

• PRIV-168: Add "X-Content-Type-Options" header to SSL termination Docker image

• PRIV-173: Update kcm-setup.run to support Amazon Linux 2

• PRIV-174: Private key authentication fails for VNC with SFTP file transfer option

• PRIV-175: Default CSP ruleset for NGINX image is broken on Safari browsers