Version 3.7 (August 2024)
New features and enhancements
Flexible UI layout for OTP credential provider
The option to use separate credential fields on the Windows Logon screen has been enhanced. Instead of predefined credential fields for the static password and the OTP only, you can now freely define up to three separate credential fields and configure their look and behavior, including the label text, the optionality, and validation expressions to restrict the length of the input.
If this option is disabled (the default), the users need to type the static password and the OTP in the Password field. You can enable and configure this option via Group Policy.
Supported platforms and third-party products
Digipass Authentication for Windows Logon now supports the following products:
Operating systems
- Windows 11 2023 Update (version 23H2)
Fixes and other updates
Issue OAS-22741 (Support case CS0149993): Missing correlation ID prevents offline authentication data retrieval
Description: Under some circumstances, the Digipass Authentication for Windows Logon client incorrectly uses an empty or missing correlation ID when it attempts to download offline authentication data (OAD). In that case, the client refuses to retrieve offline authentication data from the server. If no offline authentication data has been retrieved (either during the first logon or if the data was deleted on the server), subsequent authentication attempts can fail.
Affects: Digipass Authentication for Windows Logon 3.2–3.6
Status: This issue has been fixed.
Issue OAS-21606: OTP can be re-used for offline authentication (Authentication Provider)
Description: Under some circumstances, a one-time password (OTP) generated by a software authenticator can successfully be used more than once for offline authentication. OTP values generated by hardware authenticators are not affected.
Status: This issue has been fixed.
Deprecated components and features
PDF documentation (Deprecated)
You can view the user documentation of most OneSpan products online already at https://community.onespan.com/documentation, and we plan to shift exclusively to online documentation.
This means that PDF documentation will be completely removed in future major releases of Digipass Authentication for Windows Logon (currently planned for 3.8).
Version 3.6 (January 2024)
New features and enhancements
Supported platforms and third-party products
Software libraries
Digipass Authentication for Windows Logon now includes the following (updated) third-party libraries:
-
cURL 8.4.0
This version of cURL fixes a couple of security vulnerabilities, including CVE-2023-38545 and CVE-2023-38546.
- gSOAP 2.8.129
- wxWidgets 3.2.2.1
Deprecated components and features
Supported platforms and other third-party products
Digipass Authentication for Windows Logon no longer supports the following products:
Operating systems
- Windows 10 May 2021 Update (version 21H1)
- Windows 10 October 2020 Update (version 20H2)
- Windows 10 May 2020 Update (version 2004)
- Windows 10 November 2019 Update (version 1909)
- Windows 10 May 2019 Update (version 1903)
- Windows 10 April 2018 Update (version 1803)
- Windows 10 Fall Creators Update (version 1709)
- Windows 8.1
- Windows 8
- Windows Server 2012 R2
- Windows Server 2012
Version 3.5 (July 2023)
New features and enhancements
Separate input fields for static password and one-time password (OTP)
You can now configure Digipass Authentication for Windows Logon to always use separate credential fields for the password and the OTP on the Windows Logon screen.
If you enable this option and users need to log on with their static password and a generated OTP, they need to type the static password in the Password field and the OTP in the OTP field.
If this option is disabled, the users need to type the static password and the OTP in the Password field, i.e. passwordotp.
By default, this option is disabled. To enable it, you need to set the Use separate credential fields for logon option in the Group Policy.
This option only changes how the input form is displayed on the client side. The internal logon handling is not affected and works the same, regardless of the number of input fields shown.
Supported platforms and third-party products
Digipass Authentication for Windows Logon now supports the following products:
Operating systems
- Microsoft Windows 11 2022 Update (version 22H2)
- Microsoft Windows 10 2022 Update (version 22H2)
Software libraries
Digipass Authentication for Windows Logon now includes the following (updated) third-party libraries:
-
cURL 8.1.2
This version of cURL fixes a couple of security vulnerabilities, including CVE-2023-23916.
Fixes and other updates
Issue OAS-18444 (Support case CS0108680): No information about tested or supported back-end servers (Documentation)
Description: Digipass Authentication for Windows Logon currently supports Microsoft Active Directory Domain Services on Windows Server and OpenLDAP 2 for back-end authentication. This information is missing in the documentation.
Status: The documentation has been updated. A list of the supported LDAP servers was added to the Digipass Authentication for Windows Logon Installation Guide.
Issue OAS-17192 (Support cases CS0113781, CS0112030, CS0108670): Inconsistent behavior of the Require Digipass authentication option
Description: The behavior of the Require Digipass authentication option can be different in RDP scenarios, especially with multiple domains.
Consider a scenario where a user is already logged on (computer A) and attempts to connect to another workstation or server (computer B) via remote desktop (RDP), where both computers have Digipass Authentication for Windows Logon installed (but with different configuration settings). If computer B requires OTP authentication but computer A does not, the user may not be required to use an OTP when connecting from computer A to computer B via RDP (because of the settings of computer A).
This behavior occurs in different scenarios and is caused by a Windows security limitation that forcibly uses the credential provider settings of the source computer. It cannot be circumvented in newer Windows versions.
Affects: Digipass Authentication for Windows Logon in multi-domain environment with RDP
Status: This behavior is caused by a Windows security limitation and cannot be fixed or circumvented in newer Windows versions. Possible workarounds introduce security risks and may not work at all in the future. A respective note and description of the issue has been added to the documentation where applicable.
Version 3.4 (July 2022)
New features and enhancements
Supported platforms and third-party products
Digipass Authentication for Windows Logon now supports the following products:
Operating systems
- Windows 11
- Windows 10 November 2021 Update (version 21H2)
Fixes and other updates
Issue OAS-11647 (Support case CS0082520): Authentication via Push Notification fails
Description: Authentication via Push Notification fails if OneSpan Notification Gateway and Digipass Authentication for Windows Logon are used. This is because OneSpan Notification Gateway does not support the uppercase Digipass Authentication for Windows Logon correlation IDs.
Affects: Digipass Authentication for Windows Logon 3.3
Status: This issue has been fixed.Digipass Authentication for Windows Logon now uses lowercase correlation IDs.
Issue OAS-11031 (Support case CS0078513): No multi-line contact information via Group Policy
Description: It is not possible to specify multi-line support contact information when configuring Digipass Authentication for Windows Logon via Group Policy. This behavior is different from the Digipass Authentication for Windows Logon Configuration Center, where you can use multiple lines in the corresponding field on the Display and User Experience page.
Affects: Digipass Authentication for Windows Logon 3.21–3.22
Status: This issue has been fixed. An additional field for multi-line contact information has been added to Group Policy.
Version 3.3 (October 2021)
New features and enhancements
Silent uninstall of Digipass Authentication for Windows Logon
You can now silently remove Digipass Authentication for Windows Logon. For more information, refer to the Digipass Authentication for Windows LogonInstallation Guide.
Supported platforms and third-party products
Digipass Authentication for Windows Logon now supports the following products:
Operating systems
- Windows 10 May 2021 Update (version 21H1)
Fixes and other updates
Issue OAS-9901: 15-character limitation for primary and backup server location
Description: On the Connection Settings page of the Digipass Authentication for Windows Logon Configuration Center, the 15-character limitation for primary and backup server location has been removed.
Issue OAS-8107 (Support case CS0056648): Information about DAWL-3-0.admx and DAWL_3_0.adml is missing
Description: The Digipass Authentication for Windows LogonInstallation Guide does not contain instructions to use the Group Policy Administrative Templates for Digipass Authentication for Windows Logon 3.0 or earlier. This information is relevant when upgrading from Digipass Authentication for Windows Logon 3.0 or earlier to the current product version.
Affects: Digipass Authentication for Windows Logon 3.1–3.2
Status: The documentation has been updated.
Issue OAS-7222 (Support case CS0051968): Incorrect example of silent installation (Documentation)
Description: The Digipass Authentication for Windows Logon Installation Guide contains an example command line to silently install a minimum feature set of Digipass Authentication for Windows Logon. The example uses incorrect casing for the feature names, which are case sensitive.
Affects: Digipass Authentication for Windows Logon 2.0–3.2
Status: The documentation has been updated.
Future platform support changes
This section summarizes upcoming changes of supported platforms and other third-party products that will become effective in future versions. You are highly encouraged to plan and modify your deployments accordingly to allow future upgrades.
Version 3.4
Digipass Authentication for Windows Logon 3.4 will no longer support the following products:
Operating systems
- Windows 10 November 2019 Update (version 1909)
- Windows 10 May 2019 Update (version 1903)
- Windows 10 October 2018 Update (version 1809)
- Windows 10 April 2018 Update (version 1803)
- Windows 10 Fall Creators Update (version 1709)
- Windows 10 Anniversary Edition (version 1607)
- Windows 10 (version 1507)
Version 3.2 (January 2021)
New features and enhancements
Supported platforms and third-party products
Digipass Authentication for Windows Logon now supports the following products:
Operating systems
- Windows 10 October 2020 Update (version 20H2)
- Windows 10 May 2020 Update (version 2004)
- Windows 10 November 2019 Update (version 1909)
Deprecated components and features
Supported platforms and other third-party products
Digipass Authentication for Windows Logon no longer supports the following products:
Operating systems
- Windows 10 November Update (version 1511)
- Windows 10 Creators Update (version 1703)