What’s new in Kasm 1.15.0

Highlights

• Multiple monitor in KasmVNC sessions.

• Control Panel updates for additional mobile support and ability to relocate docking tab.

• Session Recording for KasmVNC container-based sessions and for RDP, VNC, SSH and connections.

• OpenStack dynamic AutoScaling of Kasm agents and server VMs on .

• WebAuthn for second factor for authentication (2FA).

• Self-enrollent of Two Factor Authentication (2FA) in user profile page.

• Launch Config custom form selectors for Workspace launch workflows.

• Group Permissions increased granularity for administrators.

• API Key Permissions increased granularity settings for developer API keys.

Features

• Usability Enhancements

  • Cloud Storage Mapping supported for Windows Service

  • Permissions tab for users displays the resultant group permissions.

  • AWS Config Override setting in EC2 Autoscale configuration.

  • OCI Provider autocale updates: Config override, Network Security Groups, Burstable CPU baseline and support for multiple availability domains.

  • Realm Selection while creating a new user.

  • Primary zone manager column on the Mangers table.

  • auto_add_local_user Group Setting to allow admins to automatically add local users to a specific group to mirror SSO Group Mapping capabilities.

  • Control Panel printer redirection tab.

• Infrastructure Support Enhancements

  • Increased default security of builtin NGINX configuration including CORS, CSP, HSTS, and other security related headers.

  • Support for JWT tokens for component registration for enhanced security.

  • Kasm group membership now passed to Kasm Windows Service for scripts to take action on.

  • S3 Persistent Profiles support for redirects.

• KasmVNC Enhancements

  • Increased performance when watermarking is enabled.

  • Allow special characters in username.

  • Improved logging of client settings when client connects or changes settings.

  • Add rotation of text-based watermark.

• Kasm Image Enhancements

  • BYOVPN Ubuntu Focal image with Wireguard, OpenVPN and Tailscale VPNs and associated Using a VPN With a Supported Kasm Workspace Container guide.

  • Added Nessus images for amd64 and aarch64.

  • Added Spiderfoot images for amd64 and aarch64.

  • Added Redroid images for amd64 and aarch64.

  • Added Fedora 39 Desktop images for x86_64/aarch64

  • Added Fedora 39 Core images for x86_64/aarch64

  • Added Alpine Desktop 3.19 images for x86_64/aarch64

  • Added Alpine Core 3.19 images for x86_64/aarch64

  • Added ParrotOS 6 Desktop images for x86_64/aarch64

  • Added ParrotOS 6 Core images for x86_64/aarch64

  • Added Maltego image for aarch64

  • Re-Added Slack images for amd64.

  • Removed all terminal applications from browser app images

  • Added a managed policy to Chromium based browser app images to restrict access to file:/// url scheme, disallowing the browser to browse local files.

  • Moved the default background on all images to /usr/share/backgrounds/bg_default.png to be consistent across all Linux distributions.

  • Added centralized logging for the startup and shutdown scripts of Kasm Workspaces containerized sessions.

Bugfixes

• Corrected an issue preventing Kasm creation when a web filter was defined on one of the user’s groups and the workspace.

• After applying a license the page no longer has to be refreshed to be able to use licensed features.

• Fixed searching for users inside a group not working properly.

• Removed backdrop blur on modals to prevent a bug in chromium on windows from locking up the interface for 10 - 30 seconds on low powered machines.

• The system will now check for Server references before allowing a Zone to be deleted.

• Fixed select all checkbox ignoring any filters set.

• Fixed a bug in autoscale schedules when the default Etc/UTC was used.

• Fixed issue preventing Windows RemoteApp configurations from working on Casting configurations.

• Fixed audio not working properly for RDP connections

• Fixed user usage tables not sorting correctly.

• Fixed issue with usage for Server and Server Pool based sessions not getting counted toward usage limits.

• Use textarea for JSON group settings.

• Fixed storage tab not showing in user profile on mobile views.

• Usage report now includes non-container workspaces and should still work when logging is off.

• Fix no option to show anonymous users.

• Fixed the chat function in kasm sharing.

• Fixed table rows not displaying properly on Safari.

• Fixed slow performance of JWT token generation on ARM CPUs.

• Fixed uploaded files getting non-ASCII characters removed from the filename.

• Fixed updating group settings not showing the description.

• Fixed incorrect user usage reporting in dashboard

• OCI S3 Compatible object storage in non-default regions fixed.

• Fixed a bug where a partial outage in AWS or OCI could cause Autoscaled Kasm Agents to be terminated while in use.

• Fixed rare bug where a server not being in a zone would prevent retrieving registries, agent and server lists.

• Removed Chromium from Alpine base images as it is no longer functional.

• Removed Terraform from Fedora 37 and Oracle Linux 7 as the packages are no longer provided.

• Fixed a bug in all container microservices that prevented them from launching on RHEL 8 hosts.

• Fixed a bug in the slim service images that prevented them from launching on RHEL 8 hosts.

• Fixed bug where parsing OCI time created timestamps can cause Dead Host cleanup to fail.

• Fixed a bug in all container microservices that prevented them from launching and RHEL 8 hosts.

• Depreciated ParrotOS 5 Desktop images for x86_64/aarch64

• Depreciated ParrotOS 5 Core images for x86_64/aarch64

• Fixed seamless clipboard overwriting manual clipboard in Windows sessions.

• Fixed issue that prevented Kasms from launching when internal communication passes through a load balancer that requires a hostname in the SNI field.

• Fixed Kasm web filter crashing and producing core dumps in the users home directory on some systems.

• Fixed keyring prompts launching when some applications were run in images.

• Fixed issue that prevented aggressively scaled servers from reaching the correct zone when users select a Zone in the Kasm Launch Dialog.

• Fixed issue that prevented zone restricted workspaces from being provisioned in multi-zoned deployments.

• Fixed issue with large S3-based persistent profiles causing invalid cert issues when the web filter is enabled.

• Fixed installation bug that could install and enable webcam if the underlying kernel lacked support.

• Administrators can now delete a container that is stuck in a deleting status.

• Added a separate expiration timer for shutdown of a container with persistent profiles.

• Fixed bug that prevented the Casting Config “Enforce Client Settings” option from being able to re-enable Uploads and Downloads.

• Fixed issue that caused queued Pool Workspaces to get stuck in the provisioning state if errors are encountered with provisioning.

Rolling Bug Fixes

The following fixes have been made in the rolling tagged versions of the Kasm Workspaces container images.

• Kasm Image Bug Fixes

  • (03/15/2024) KasmVNC has been updated from 1.3.0 to 1.3.1

    • Fix exception thrown on Firefox 124 and higher

    • Fix artifacts on high resolution secondary screens

    • Fixes for touch support on primary and secondary screens

    • Fix for Oculus keyboard input

    • Fixes random characters injected as keyboard inputs when scrolling on secondary screen.

• Kasm Service Images

  • (04/03/2024) Kasm API Service fixes for the public developer API. Developer API not able to make API calls on behalf of a specified user (impersonate).