News

JumpServer v4.10.17-lts Release Notes

#Release Notes
JumpServer v4.10.17-lts Release Notes

What’s new

  • Upgraded Django to 5.2
  • Upgraded Python to 3.14
  • Upgraded Vue to 3.5
  • Added support for custom Single Sign-On (SSO) authentication
  • Added support for configuring how the real client IP address is obtained
  • Added support for UKey authentication (JumpServer EE)
  • Added support for custom favorite asset node trees
  • Added support for preventing the export of sensitive information by setting "SECURITY_DISABLE_VIEW_SECRET=true"

Improvements

  • Optimized Ansible task execution by running each task in an isolated container, with up to 10 concurrent tasks
  • Integrated session recording playback and transcoding into the client
  • Added rate limiting for file uploads and downloads, with a default limit of 50 requests per hour
  • Encrypted user email addresses at rest
  • Added support for configuring a separate password expiration policy for administrators
  • Optimized the retrieval of attribute filter rule instances in ACL rule details to avoid excessively long request parameters
  • Optimized historical command cleanup by deleting data in daily batches
  • Added popup notifications for in-site messages
  • Added support for customizing the available display languages
  • Added support for querying assets by excluding specific asset types and categories
  • Optimized the user login ACL matching logic by excluding ACL rules where the current user is assigned as an approval reviewer
  • Optimized the API documentation by hiding view class comments
  • Added support for uploading certificates for LDAP authentication services
  • Added support for enabling RDP signing when connecting to RDP sessions through the client by setting "RDP_SIGN_ENABLED=1" (JumpServer EE)

Bug fixes

  • Fixed an issue where multiple login logs were generated for a single user login
  • Fixed an issue where default parameter values were not applied when executing user jobs
  • Fixed an issue where integration application secrets were regenerated on every update
  • Fixed an issue where Playbook permissions were not validated when cloning a Playbook
  • Fixed security issues in domain-related automation tasks
  • Fixed a security issue in the DBeaver remote application connection method
  • Fixed security issues in account-related automation tasks
  • Fixed an issue where certain Ansible Lookup plugins, such as "file", "pipe", and "env", were not properly disabled
  • Fixed an issue where the “Remember Password” option was displayed incorrectly on the Luna page

Recommended Reading

How to Enable RDP Signing in JumpServer EE
Tutorials

How to Enable RDP Signing in JumpServer EE

Enable RDP signing in JumpServer EE using RDP_SIGN_ENABLED=1 to improve RDP file integrity, reduce spoofing risk, and align remote access hardening with Microsoft security guidance.

Download Community Free Trial