Skip to content

Release Notes 4.9.0

Overview

This document outlines the updates, improvements, and fixes introduced between versions 4.8.0 (released on Mar 31, 2025) and 4.9.0 (released on May 7, 2025) of the Excalibur v4 software.

New Features

VNC PAM target support

VNC (Virtual Network Computing) is a graphical desktop-sharing system that allows users to remotely control another computer using the RFB (Remote Framebuffer) protocol. It's commonly used for remote administration, support, and troubleshooting, especially in IT environments.

Integrating VNC as a supported PAM (Privileged Access Management) brings significant security and operational benefits.

VNC PAM Target Support Screenshot

Figure 1. VNC PAM Target Support Screenshot

Hybrid deployment support - tunnel client

The Excalibur Tunnel Client is an essential part of the Excalibur Tunnel technology, designed to securely connect your local network to the Excalibur Cloud. With this connection, you can seamlessly access SAM (Streamed Access Management) resources hosted in your local network directly from the cloud-based Excalibur environment.

It establishes a secure, reliable connection using mutual TLS (mTLS) for both authentication and encryption, ensuring your data remains protected at all times. Built with security, reliability, and ease of use in mind, the client is ideal for both developers and system administrators.

With its straightforward installation and configuration, the Excalibur Tunnel Client offers a smooth, hassle-free setup experience.

Key Benefits:

  • Enhanced Security: SSH tunneling provides a secure, encrypted communication channel for privileged access, reducing the risk of unauthorized access or breaches.
  • Flexibility: Customers can deploy the solution in VMs or locally, based on their environment and infrastructure.
  • Simplified Management: This solution integrates smoothly with PAM, offering centralized access management and monitoring for both on-premises and cloud resources.
  • Hybrid Compatibility: It bridges the gap between on-premises and cloud-based systems, allowing for consistent access control regardless of where the resources are hosted.
  • Cross-Platform:
    • Ready-to-use Debian/Ubuntu packages
    • Red Hat/CentOS packages for enterprise environments
    • Support for other Linux distributions
    • Windows MSI installer packages for easy deployment

Mobile Application

Improved UX on tenant selection process

Starting from version 4.3.1, we’ve removed the confirmation button for user and tenant clicks. The process goes to the next step immediately.

LDAP user changes reflection

Any changes to a user’s username, surname, or email in LDAP are automatically updated and reflected in the mobile app under the Registered Account details. Updates are typically visible within 15 minutes.

Usability Improvements

SMTP setup step made optional

In the Setup Wizard, the SMTP setup step is optional. Users can skip this step during deployment and complete the SMTP configuration later, after the deployment is finished.

…and more minor fixes and improvements