1.0.311

Release 24.09.2025 | AccessReject when API timeout

Fixed

• If the multifactor-api-timeout expires, the warning Multifactor API timeout expired will be written and AccessReject will be returned.

1.0.308

Release 04.08.2025 | Acct-Authentic attribute support for winlogon

New

• Added Acct-Authentic attribute support. If the RADIUS packet contains the Acct-Authentic attribute without a domain value, the adapter will skip loading the profile and checking groups membership. If there is no attribute in the packet, the adapter operates in normal mode.
  The adapter interprets the attribute values as follows:

1 - Domain
2 - Local
3 - Microsoft

1.0.303

Release 30.07.2025 | IP white list

New

• Added access control based on IP address. The setting allows connection to the adapter only from the specified IP\subnets. If the setting is empty or does not exist, all IP addresses are allowed.
  Example:

   <add key="ip-white-list" value="192.168.0.1; 127.0.0.1/16; 199.168.0.1-199.168.0.10"/>
  

• Added a condition for caching the second factor based on user groups. If the user is a member of the specified groups, then his successful second factor will be cached. Setting works only together with setting authentication-cache-lifetime. If the setting is empty or does not exist, caching works for all users as normal.
  Example:

   <add key="authentication-cache-groups" value="Auth1;admins"/>
  

1.0.295

Release 15.05.2025 | Сalling-Station-Id for MF cloud

Bugfixes

• Fixed: If the Calling-Station-Id attribute is empty or contains a hostname instead of an IP address, the RADIUS adapter will send the IP address from the UDP packet in the request to the MF cloud.

1.0.288

Release 18.02.2025 | Email attribute in API requests

New

• Now if you use active-directory-domain setting then radius adapter will load user profile and send email attribute value in MF API request. If you don't want to send your email you should set privacy-mode.

1.0.285

Release 29.01.2025 | Message-Authenticator attribute

New

• Added Message-Authenticator attribute to all adapter responses.

1.0.280

Release 05.12.2024 | 429 status code

New

• Сhanged behavior when receiving 429 status code.

1.0.277

Release 01.11.2024 | Bind timeout

New

• Added setting for waiting time for response from ldap server for bind request. Default value is 30 seconds.

   <add key="ldap-bind-timeout" value="00:00:05" />
  

1.0.275

Release 18.10.2024 RADIUS password changing

Bugfixes

• Fixed: Now the password change process works correctly.

1.0.271

Release 09.10.2024 | Nested groups search

New

• Support msRADIUSFramedIPAddress attribute for return using RadiusReply.
• Forced multifactor api timeout. Use the following syntax: value=hh:mm:ss! to set the timeout less than the minimum recommended.
• A new appSetting configuration section. Now you can specify the containers in which to search for nested groups:

   <add  key="nested-groups-base-dn" value="CN=Users,DC=domain,DC=your;OU=Admins,DC=domain,DC=your"/>