Password Manager Pro can be configured to run in FIPS 140-2 compliant mode

The latest version (build 6403) of Password Manager Pro can be configured to run in FIPS 140-2 compliant mode. In addition, this version offers dual encryption, provision to prevent the execution of malicious code/script in the application to combat cross-site scripting.

List of New Features / Enhancements include:

Dual encryption of passwords and files for extra security. Sensitive data are now encrypted once in the application (AES 256-bit) and once in database
PMP can now be set-up to run in FIPS 140-2 compliant mode where all encryption in PMP is done through FIPS 140-2 certified systems and libraries
Provision to prevent the execution of malicious code/script in the application to combat cross-site scripting
Password Activity Report enhanced with details on the list of resources for which access control workflow has been activated/deactivated and also the resources for which access control workflow has not been configured
New report depicting the resources / passwords that are not part of any resource group
Provision to check integrity of passwords of a resource group with support for integrity verification on-demand & scheduled

Bug Fixes / Changes

Earlier, two options were provided for managing encryption key in PMP - you were allowed to either leave it to be managed by PMP or move it to a secure location / external drive and manage it yourself. Now, the option of leaving it to be managed by PMP has been removed. PMP does not allow the encryption key to be stored within its installation folder. This is done to ensure that the encryption key and the encrypted data, in both live and backed-up database, do not reside together. It is strongly recommend that you move and store this encryption key outside of the machine in which PMP is installed - in another machine or an external drive.
Earlier, when exporting the personal passwords, the custom fields were not shown in plain-text. This issue has been fixed.
Earlier, through 'Admin >> Server Settings', when the PMP server port alone was changed, it threw an error. This has been fixed
UTF-8 encoding support in MS SQL server
Invoking auto logon helper in turn downloads a browser addon file. The SSL certificate that ensures trustworthiness of the addon has now been renewed.
Earlier, user group activity report was not displayed properly on the dash board. This has been fixed.

PMP 6403 Full Download: http://www.manageengine.com/products/passwordmanagerpro/download.html

NOTE:
Installing the full 6403 build will uninstall your existing PMP installation. If you are running evaluation version and wish to evaluate the new version, take a zip of the entire PMP installation folder (existing version) and save it before installing the new version (in case, you need the data in the existing version).

Upgrade Pack for Existing Customers:

Existing customers of PMP can download the 6.4 (build 6403) upgradepack from the following URL:

http://www.manageengine.com/products/passwordmanagerpro/upgradepack.html

IMPORTANT NOTE:

Take a copy of the entire PMP installation folder and paste it in some other location. In case, something goes wrong with PMP upgrade, you can rely on the copy. All your settings will remain intact.

Upgrade Pack Instructions:

http://www.manageengine.com/products/passwordmanagerpro/upgradepack.html#instructions

Do give PMP 6.4 a try and let us know your feedback at passwordmanagerpro-support@manageengine.com

Thanks,
Bala

- - - - - - - - - - - - - - - - - - - -
Toll Free: +1 925 924 9500
Email: passwordmanagerpro-support@manageengine.com
PasswordManager Pro - Enterprise Password Management Solution
www.passwordmanagerpro.com
------------------------------------