General Information
On 25th of September the following was released:
- ISL AlwaysOn 4.4.1823.24 for Windows (release_date=2018-09-18, build=17420454b221936c46bf8bbdb90afa053c704728, platform=win32, os_version=0x06010000-0x7fffffff)
- ISL AlwaysOn 4.4.1823.24 for macOS (release_date=2018-09-18, build=17420454b221936c46bf8bbdb90afa053c704728, platform=mac, os_version=0x0a0800-0x0affff)
All updates have release date set to 2018-09-18. Your ESS will need to be same or higher to be able to update your server. This release is available to all countries except Japan.
Upgrading to new version
Hosted service users please check Upgrading Hosted Service.
Server license users please check Upgrading Server License.
Improvements
ISL AlwaysOn - Desktop - Register port forward plugin (FEATURE) [ISLALWAYSON-1273] More
DescriptionISL AlwaysOn now supports port forwarding plugin. This allows users to create a tunnel between the operator and the client, which can be used to tunnel RDP or SSH sessions.
ISL AlwaysOn - Desktop - Implement native only authentication (FEATURE) [ISLALWAYSON-1286] More
DescriptionAdded support for native only authentication. When this option is enabled, operators do not have to enter global ( or user ) access password in order to connect to remote computer. When the connection is established the remote computer is automatically locked.
In order to to use this functionality, the following settings have to be enabled:
- On ISL Conference Proxy under Configuration - ISL AlwaysOn : Allow native only authentication (reconnect required):
- In ISL AlwaysOn settings under Basic : "Enable Windows user password" ( on Windows OS ) or "Enable macOS user password" ( on macOS )
ISLAlwaysOn - Desktop - Lock computer on session end (FEATURE) [ISLALWAYSON-1287] More
DescriptionAdded support for locking computer when session is ended. In order to use this functionality users must add the following option under ISL AlwaysOn start options:
Example:
[lock_on_end]
order=1
cmd=--on-disconnect "main?lock=true"
text=Lock desktop on session end
ISL AlwaysOn - Desktop - Add support for headless mode (FEATURE) [ISLALWAYSON-1293] More
DescriptionAdded support for headless mode. When this mode is enabled the process is started in background and no user inteface is shown to user. This type of connection only supports port forwarding and system information functionality. This mode is automatically enabled when using RDP/SSH tunneling.
ISL AlwaysOn - Desktop - Implement lock desktop for OSX (FEATURE) [ISLALWAYSON-1294] More
DescriptionISL AlwaysOn for macOS now supports locking of desktop on session start. In order to enable this functionality users have to select the following checkbox in ISL AlwaysOn settings under Desktop Sharing:
Lock computer when session starts.
ISL AlwaysOn - Desktop - Register talk plugin on windows for remote sounds (FEATURE) [ISLALWAYSON-1334] More
DescriptionISL AlwaysOn will now use the newly implemented talk plugin with support for remote sound.
Note: Remote computer must have at least one output device in order for remote sound to work.
ISL AlwaysOn - Desktop - Send connection tags when granting connection (FEATURE) [ISLALWAYSON-1347] More
DescriptionUsers are now able to specify tags for a specific computer during installation. The tags can be specified while constructing custom installer URL, or by applying them via command line arguments.
Example: ISLAlwaysOn.exe tags "1,2,3" ( tags are delimited with comma ).
ISL AlwasyOn - Desktop - Unify grant and grant_silent cmd lines (FEATURE) [ISLALWAYSON-1348] More
DescriptionIn previous versions users were only able to supply description of the computer and connection password for ISL AlwaysOn installer when using the grant_silent command line parameter. Reading of command line parameters was redesigned, the description and connection password is now used also when using normal grant command line parameter.
ISL AlwaysOn - Desktop - Improve ISLAlwaysOn grant dialog - display Alias, Tags and Authentication methods (FEATURE) [ISLALWAYSON-1349] More
DescriptionISL AlwaysOn grant dialog ( which is presented when adding a user to allow access to ISL AlwaysOn machine ) now includes additional information - Alias of the computer, tags defined for this computer and authentication methods available for this user.
ISL AlwaysOn - Desktop - Use native authentication switch from server (FEATURE) [ISLALWAYSON-1370] More
DescriptionISL AlwaysOn checks ISL Conference Proxy setting called "Allow native only authentication (reconnect required):" ( located in Configuration - ISL AlwaysOn ). When this setting is disabled users will not be able to connect to remote machine using native only authentication even if remote computer has "enable macOS/Windows user password" setting enabled in ISL AlwaysOn settings.
ISL AlwaysOn - Desktop - Add customization for mail template for file access invitation (FEATURE) [ISLALWAYSON-1375] More
DescriptionAdded support for customizing file access mail template. Users can define own subject and body for the mail template. In order to use this functionality new customization must be used, where own subject and body are written in sections ISL AlwaysOn File sharing invitation subject and ISL AlwaysOn File sharing invitation body.
ISL AlwaysOn - Desktop - Implement new talk audio plugin implementation (FEATURE) [ISLALWAYSON-1382] More
DescriptionTalk plugin for ISL AlwaysOn was redesigned. It now includes a new functionality - remote sound. When this option is enabled the sound from remote machine is played locally.
ISL AlwaysOn - Desktop - Opening clipboard should re-try (FEATURE) [ISLALWAYSON-1387] More
DescriptionIn some cases the shared clipboard is locked by another process thus user does not have a copy of the remote computer clipboard in own clipboard. Clipboard opening is now retried 3 times.
ISL AlwaysOn - Desktop - Improve ISSC clipboard driver (FEATURE) [ISLALWAYSON-1388] More
DescriptionISL Light ISSC clipboard driver was redesigned and improves reliability of shared clipboard.
ISL AlwaysOn - Desktop - Switch clipboard on focus switch (FEATURE) [ISLALWAYSON-1389] More
DescriptionClipboard content is now only updated on viewer focus change. If operator focuses on the remote desktop view the remote clipboard will be updated with the local one ( remote clipboard content will be replaced with local one ). If operator unfocuses the remote desktop view the local clipboard will be updated with the remote one ( local clipboard content will be replaced with remote one ).
ISL AlwaysOn - Desktop - Do not transfer clipboard when not focused (FEATURE) [ISLALWAYSON-1390] More
DescriptionIf operator does not have focus on remote desktop view and remote user changes clipboard then this change will not be transferred to operator ( due to not in focus ).
ISL AlwaysOn - Desktop - Disable resume session on RDP sessions (FEATURE) [ISLALWAYSON-1395] More
DescriptionSupport for resuming session was removed for tunneled session ( RDP, SSH ).
ISL AlwaysOn - Desktop - Add support for automatic key upgrade RSA 2048 (FEATURE) [ISLALWAYSON-1401] More
DescriptionIn these release, flag for enabling custom RSA keys is enabled. Flags that are enabled are:
- 2017-03-16 LIB-746 automatic key upgrade
- 2017-03-22 LIB-746 disallow cert v1 downgrade
- 2017-03-22 LIB-746 disallow invalid certs
So ISL AlwaysOn will automatically use stronger key, it will prevent key downgrade (for instance, from 2048bit RSA key to 1024bit RSA key), and it will not allow invalid certs
ISL AlwasyOn - Desktop - Connect in on_demand mode when no ssl packets are sent (DEFECT) [ISLALWAYSON-1320] More
DescriptionIf crypto key was changed on ISL Conference Proxy server the on_demand mode was not established. The issue was that ISL AlwaysOn was unaware of the crypto key change, thus could not read the request to go to online state. Receiving wake command from ISL Conference Proxy was redesigned, ISL AlwaysOn will go to online state even if ISL Conference Proxy sends the request which was signed with key that ISL AlwaysOn does not yet have.
The defect was fixed.
ISL AlwaysOn - Desktop - Set topmost flag on whiteboard window (DEFECT) [ISLALWAYSON-1335] More
DescriptionIn some cases users were unable to draw over ISL Light application and over Windows start menu. The issue was that topmost flag was set only once ( when whiteboard overlay was created ). The flag is now set on each whiteboard change so users should be now able to draw over ISL Light application and over Windows start menu.
The defect was fixed.
ISL AlwaysOn - Desktop - Recreate whiteboard window when streaming monitor changes (DEFECT) [ISLALWAYSON-1367] More
DescriptionDuring a session, switching to the second screen and using the whiteboard tool to draw would draw on the first screen instead. The issue was caused because the location of the whiteboard was not being updated when selecting a new monitor. Whiteboard position functionality was redesigned, users should no longer have issues with whiteboard location not being updated.
The defect was fixed.
ISL AlwaysOn - Desktop - Cannot connect to macOS when ISL AlwaysOn Monitor is killed (DEFECT) [ISLALWAYSON-1379] More
DescriptionIf ISL AlwaysOn Monitor process was not running on remote macOS machine, users were unable to connect to that computer. The issue was that the service did not restart the monitor process in case it was not running and did not report back that there was an issue with starting of monitor process. ISL AlwaysOn monitor process was redesigned, it is now automatically started if it's not running and also reports back any issue that occurred during start.
The defect was fixed.
ISL AlwaysOn - Desktop - Always set Host header on all HTTP/1.1 requests (DEFECT) [ISLALWAYSON-1383] More
DescriptionIn previous versions some transports ( wsstun-proxy, wstun-proxy and https-proxy) did not send host header in the connect request. Connect request was redesigned and the mentioned transports now also report host header in the connect request. Other transports already sent host header in the initial connect request.
The defect was fixed.
ISL AlwaysOn - Desktop - Fix bridge from dom notify to state notify (DEFECT) [ISLALWAYSON-1385] More
DescriptionWhen using remote desktop tunneling the counter "port_forward_commands_count" in ISL Light state did not decrease after tunnel was closed. The notify mechanism was redesigned and the counter is now correctly decreased after closing the tunnel.
The defect was fixed.
ISL AlwaysOn - Desktop - Delay clipboard update while sending protocol options (DEFECT) [ISLALWAYSON-1391] More
DescriptionIn some cases the clipboard was zipped before the remote client knew about the protocol options ( client was not aware that the clipboard is already zipped ). Clipboard updates are now delayed until the client receive the initial protocol options.
The defect was fixed.
ISL AlwaysOn - Desktop - Replace ISL AlwaysOn icon (DEFECT) [ISLALWAYSON-1392] More
DescriptionISL AlwaysOn icon was replaced with a new one which comforts to internal ISL Online Branding Style Guide.
The defect was fixed.
ISL AlwaysOn - Desktop - Report desktop plugin drivers (DEFECT) [ISLALWAYSON-1397] More
DescriptionDesktop plugin was sending empty desktop drivers. User can now select between multiple desktop drivers ( depending on the remote operating system ).
The defect was fixed.
ISL AlwaysOn - Desktop - Command line options are not quoted (DEFECT) [ISLALWAYSON-1398] More
DescriptionWhen granting access with description on macOS, if description included spaces, only first word was used for description. Grant access procedure was redefined and if user specifies multiple words for description , the description will now be correctly set.
The defect was fixed.
ISL AlwaysOn - Desktop - Native authentication not working on macOS 10.8,10.9 (DEFECT) [ISLALWAYSON-1399] More
DescriptionThe new feature - native authentication was not working correctly on macOS 10.8 and macOS 10.9. This feature is now disabled on those operating systems, along with the feature lock desktop on session end.
The defect was fixed.
ISL AlwaysOn - Desktop - Fix parser order (DEFECT) [ISLALWAYSON-1400] More
DescriptionIf users specified IP range in filter, this range was incorrectly parsed, thus users were unable to connect to that computer ( based on the filter rules ). The order of parsing was redesigned and IP range should now be correctly parsed.
The defect was fixed.