• Home
• Release Notes
• Version 2.4.0

Version 2.4.0

Release Date: 21st January, 2026

---

Release Summary

We are pleased to announce the release of PAM v2.4.0. This update introduces significant automation for cloud environments, advanced threat detection capabilities, and a more flexible user interface to enhance your privileged access management.

New Features:

Cloud & Infrastructure Automation

• AWS EC2 Cloud Discovery: Automatically discover and onboard AWS EC2 instances into the PAM Vault, ensuring no cloud asset goes unmanaged.
• Linux Onboarding from Active Directory: Simplified the process of bringing Linux assets managed via AD into the PAM ecosystem.

Advanced Security & Threat Detection

• Advanced Anomaly Detection Engine: A new suite of tools focused on identifying behavioral anomalies and potential security threats in real-time.
• App-to-App Credential Management (Initial Release): Admins can now securely store and retrieve hardcoded application credentials from the PAM Vault, reducing the risk of static secrets.

Identity & Access Control

• AD Self-Service Password Management: Users can now securely reset and manage their own Active Directory passwords directly within the PAM interface.
• Web App Thick Client: Launch secure sessions through a dedicated desktop application without the need for traditional RDS infrastructure.

User Experience Customization

• Custom User Attributes: Define profile fields with specific data types and mandatory settings to match your organization’s identity requirements.
• Theming Support: Users can now toggle between Light, Dark, or System Default themes for a personalized workspace.

Improvements:

Access & Session Management

• Unified SFTP & SSH Sessions: Access both SFTP and SSH within a single MobaXterm session for better operational flow.
• Session Collaboration: Users can now securely collaborate in live RDP, SSH, and Database sessions directly via the web interface.
• Direct Client Launch: Access machines via MSTSC or Remmina using machine-specific, downloadable .rdp files.
• Bi-directional Clipboard Sync: Synchronize clipboards seamlessly between the browser and remote sessions (RDP/WebApps) using intuitive UI controls.

Database & Endpoint Security

• Granular Command Blocking: New security controls for MSSQL (Web & GUI) and Oracle (Web) to block high-risk commands.
• Database GUI: Added support for native GUI based database(MySQL, PostgreSQL, MSSQL) access on the web.
• Endpoint PAM Enhancements: Finer-grained controls and usability options for endpoint-level privileged access.

Performance & Reporting

• API Performance (Unlimited File Size): Removed file size restrictions for SFTP and SMB operations conducted via APIs.
• Audit Traceability: Added an Action Change Field to audit reports for enhanced compliance tracking.
• Reporting UI: Improved the usability and consistency of the Scheduled Reports workflow.

Certificate Manager

• Centralized Certificate Lifecycle Management: Provides centralized SSL/TLS certificate management with secure storage of certificates and private keys, continuous monitoring, expiry alerts, and multi-format certificate downloads.
• Advanced CSR & Key Management: Enables generation, storage, reuse, and download of CSRs and private keys with full control over cryptographic parameters (RSA/ECC, key size, SANs, passphrases), including reusable CSR templates for standardization.
• Integrated Certificate Issuance with Trusted CAs: Supports self-signed certificates and CA-signed certificates via integrations with providers like Let’s Encrypt and GoDaddy, securely managing CA credentials, tracking issuance status, and automatically storing issued certificates.

Bug Fixes & Validations:

Security Validations

• Access Allocation Validation: Fixed an issue where past dates could be selected for access; the system now strictly prevents Past-Time selection during custom access allocation.