How can we help?




Follow

cloud servers update 13-04-21

Stewart -

Release Overview

Release Date: 13 April 2021 
Servers: atmail cloud EU-WEST an Us-EAST servers.


Added

Mailserver + AdminAPI

  • 2FA section to Security → Password Policy

    • Audit logs for administrative actions

    • Toggle 2FA feature (available/not-available) for an email domain

    • Ability to delete TOTP codes for entire email domain when turning 2FA availability off for that domain

  • 2FA section to Account Manager → Account → Edit Account

    • Ability to delete TOTP code for single user

  • 2FA section to Account Manager → Account → Webmail Settings

    • Displays users TOTP status

  • 2FA section to RBAC

    • 2FA All (right to all 2FA actions)

    • 2FA View (right to view 2FA settings)

    • 2FA Edit (Right to edit 2FA settings)

Webmail

  • 2FA toggle in Settings → Accounts

    • Includes audit log for enable / disable of this setting ( logs will be in adminapi syslog )

  • 2FA instructions added to in-app help

  • Message pop up on login if administrator has disabled 2FA

  • User will be blocked for sixty seconds after 5 consecutive 2FA failed attempts


Changed

Webmail

  • Login path now includes adminAPI component on critical path

  • Login password now requires TOTP code if 2FA enabled

  • Change password now requires TOTP code if 2FA enabled

  • Forgotten password now requires TOTP code if 2FA enabled

  • API authentication token now back to JWT with JWE

  • Avoid waiting thirty seconds during forgotten password process


Fixed

Webmail

  • Generic error messages (now more informative to the user)


Guides

Mailserver + AdminAPI

Webmail

Comments


Contact our support team


+61 (7) 5357 6605       support@atmail.com