Release Notes

May 31, 2022

Improvement(s)

  • Minor improvements in UI and tooltips

Fixes

  • Problem with IP address regeneration when a user adds or updates WPC subnet for tenants with 500+ devices
  • Ability to choose domain service when DNS Proxy is disabled
  • Issue when a user can’t download Azure template on Deploy Connector step for Network Creation Wizard
  • Ability to choose 'All internet traffic' radio button after removing network with service
  • Issue when a user sees "Region is not allowed to use for the user group" error during an attempt to download profile after group change

May 26, 2022

Improvements

  1. Previously the identity of deleted entities were not available and were shown as “removed”. Now, the identity of deleted Users, Devices, Networks, Hosts and Connectors is shown in grey text. The history of deleted entities is maintained for 30 days.
  2. Filters for Connections widget on Status page are showing a list of selected items at the beginning of the list.
  3. Filters for Connections widget on Status page are supporting a list of Networks and Hosts.
  4. Changed the Users, Networks, and Hosts links from the Status page to go to Users, Network and Host configuration pages.

Fixes

  1. Filtering and reporting bug fixes for Connections widget on Status page.

February 15, 2022

Fix

  • Unresponsive Status page issue, faced by customers with a large number of users, was fixed

February 7, 2022

Improvements

  • UI/UX improvements to the Networks and Host sections
  • Miscellaneous UI improvements

Fixes

  • Host/Network status display accuracy
  • "Device does not exist" errors after importing ovpn-profiles
  • Immediate log out after successful login
  • Interruption in internet access when an administrator changes internet gateway settings from 'all' to a specific internet gateway

January 27, 2022

Fixes

  • Fixed an issue where access settings were not applied as configured for an Access Group having a service defined for Host as one of its destinations
  • Fixed issue where OpenVPN profile for newly created Connectors could not be downloaded

December 30, 2021

Improvements

Disconnect reason descriptions for certain errors were improved for VPN Connections widget of the Status page.

Fixes

Filtering and reporting bug fixes for VPN Connections widget on Status page.

January 24, 2022

Fixes

Fixed an intermittent issue in which unsolicited traffic from a connected Network or Host would not be routed to the User’s connected device

January 19, 2022

Features

  1. A page that provides a description of the Domain Filtering and Traffic Filtering functionality and the ability to configure it is seen on arrival to the Shield section when the filtering funtions are inactive

Improvements

  1. Renamed device names are shown in the Cyber Shield statistics
  2. Deleted devices are marked as such in Cyber Shield statistics and detailed reports.
  3. The browser’s “Back” button can be used during drill-down on the Cyber Shield Top 10 dashboard
  4. Domain Filtering is disabled when DNS proxy use is turned OFF

Fixes

  1. Cyber Shield page errors when kept open in the background for a long time.
  2. Inability to display User names and device names on the Cyber Shield page when SAML/LDAP is in use
  3. iPhone scrolling issue
  4. Exporting issue of the domain filtering detailed report when SAML/LDAP is in use

January 13, 2022

Features

  • Internet Gateways can now be selected per User Groups, Networks and Hosts.

Improvement(s)

  • Improved UI for Users and User Groups.
  • Renamed Block Internet Access to Restricted Internet.
  • Owner of OpenVPN Cloud can be an Administrator of another OpenVPN Cloud account

December 20, 2021

Fixes

  • Fixed a bug in Access Group configuration that was triggered on changing the Region of a Host Connector

November 29, 2021

Features

  • LDAP authentication is out of beta
  • IP subnets belonging to a Network can now be configured as IP Sources and used in Access Groups
  • Added configuration of Protocol and Port for domain services.

Improvement(s)

  • A new version of Quick Start is introduced
  • API has been added as a sub-menu item under Settings in the navigation sidebar
  • It is now possible to configure Split Subnet per Connector. When a Network uses multiple Connectors, Split Subnet allows for the routing of domain services through a specific Connector.
  • Caching of Region IP addresses has been improved
  • Network and Host creation performance for accounts with large number of users has been improved

Fixes

  • Fixed the issue of DNS Records misconfgiuration for IPv6 addresses
  • Fixed the issue of ICMP service misconfiguration

October 30, 2021

Improvement

  • Upgraded the Region infrastructure for OpenVPN Cloud.

Fix

  • An issue that caused OpenVPN 2 clients to reconnect on TLS renegotiation.

October 26, 2021

Improvement

  • Upgraded the Region infrastructure for OpenVPN Cloud.

October 12, 2021

Fix

Issue where initial request from the frontend timed out when generating a connection configuration file (profile) for an account with more than 10 access groups.

October 18, 2021

Fix

Issue where OpenVPN Cloud stops automatically suspending user accounts after authentication is changed from OpenVPN Cloud to SAML or LDAP. This gives users the unintended ability to be authenticated with both their OpenVPN Cloud credentials and SAML or LDAP credentials if Connect Auth is set to No.

October 7, 2021

Feature

  • Wizard to help configure hosts.

Improvements

  • Warning displays when Internet Access is set to Split Tunnel Off and the network providing internet access is offline.
  • After setting Egress ON for a network, a popup opens where you can configure internet access for user groups, networks, and hosts.
  • When DNS records are configured with multiple IP addresses and DNS proxy is used, DNS proxy provides load balancing by randomizing the order of the IP addresses in the DNS response.
  • IPv6 VPN subnet for connectors was changed from /126 to /64.

Fix

  • Minor portal layout issues.

October 8, 2021

Fix

  • Issue that prevented the viewing and changing of the access groups configuration that contained hosts with services.

September 23, 2021

Features

  • API
    • Create users in bulk
    • Generate profile even if automatic distribution is enabled
    • Revoke profiles
    • Add or remove devices for existing user
    • Create or remove Connector for existing host

Fixes

  • Issue where it was not possible to add a new VPN Subnet
  • API
    • Blocked API requests from Swagger
    • 405 error for improper URIs
    • Corner case 500 error when generating and revoking a profile

Improvements

  • API
    • Deprecate Basic Auth
    • Require explicit grant type (client_credentials) when creating OAuth2.0 tokens
    • Full support of calls to {{OpenVPN ID}}.api.openvpn.com
    • Swagger is now located at {{OpenVPN ID}}.api.openvpn.com/docs/swagger-ui/#/ encouraging end users to stop calling raw api.openvpn.com
    • Error reporting in Swagger is better

September 9, 2021

Features

  • Introduced advanced settings:
    • Authentication exists in native browser when SAML is enabled 
      Enable authentication in native browser if you would like to use cookies and the password manager from your local browser to authenticate the connection to OpenVPN Cloud.
    • Enable/disable DNS Proxy 
      Use setting to disable DNS Proxy if your organization doesn’t want OpenVPN to protect DNS requests and use domain routing and domain filtering.
    • Different DNS servers can be configured for different DNS zones
    • Default domain suffix can be configured for Windows clients
    • Enable/disable SNAT
      Source Network Address Translation (SNAT) is helpful in remote access scenarios to simplify routing configuration on a remote site. However, it might be helpful to disable SNAT for audit purposes or for VoIP solutions that do not work correctly with SNAT.
    • Define custom client options that can be pushed to all clients
  • Ability to combine private and public DNS servers
    OpenVPN Cloud will automatically switch to the next server if first server cannot resolve a domain.
  • Network domain can have embedded IP enabled
    Embedded IP enabled permits you to append an IP address to a domain and resolve such domains without a DNS server configuration. For example, ssh root@192-168-1-1.server.example.com can be used to SSH into the computer with a private IP address of 192.168.1.1 on the network that is announcing the domain name of server.example.com.

Improvement(s)

  • Blocking rules
    If the Access Group configuration does not permit a resource, then the session will be dropped without waiting for the resource to time out. 

September 8, 2021

Features

  1. Introduced Allow list functionality in the Cyber Shield Domains Filtering section that allows unblocking added domains and their subdomains. Details are here.
  2. Introduced Block list functionality in the Cyber Shield Domains Filtering section that allows blocking the specified domains and subdomains. Details are here.
  3. Introduced Domains' detailed reporting functionality in the Cyber Shield. It allows downloading a csv file with a list of monitored and blocked domains for all or selected category, or a user from the Top 10 dashboard when reviewing domains statistics. Details are here.

Improvements

  1. When accessing blocked domains, the ‘site not found’ web browser error page is now seen faster as the TCP connection is being reset instead of being allowed to time out

July 16, 2021

Fixes

  • Enabled back Connector Status Change notification for accounts, where it was accidentally disabled after recent release
  • Fixed validation message for DNS servers

August 5, 2021

Features

  • Introduced Network Wizard, which guides the administrator in setting up Networks to use for the three common scenarios: Remote Access, Secure Internet Access, and Site-to-Site networking.
  • Introduced Onboarding Wizard, which guides the user to configure OpenVPN Cloud for personal use.

Improvements

  • Connector status change notification now informs when connector is returned back online.

Fixes

  • Fixed the issue that would cause Access Group removal when a Service was removed
  • Fixed the issue that would cause domains with capitalized letters to not work properly

June 29, 2021

Improvements

Administration Portal
  • Network subnets and domains separated into their own sections
  • Services moved to a new tab
  • Services separated into IP and domain sections
  • Improved service creation flow
  • Admin Role can now be set during user creation
  • Updated screens on the Get Connected page

June 7, 2021

Features

  • Introduced Network Connector Deployment, which allows administrators to select their preferred deployment scenario with direct access to the related administrator guide.
  • Administrators can test each connector after the deployment is complete.

Improvements

  • Linux scripts now contain routing and NAT configurations.

June 2, 2021

Improvements

  • Upgraded the VPN server infrastructure.
  • Fixed an intermittent issue where domain routing didn’t work properly for iOS devices.

April 8, 2021

Features

March 30, 2021

Features

March 17, 2021

Fixes

  • Fixed an intermittent issue where some users weren’t able to reach a new domain that was recently added to a network.

February 24, 2021

Features

  • Introduced the ability to configure domains for networks, hosts, and services.
  • DNS records can now be added in the administration portal to extend DNS configuration capabilities.

Improvements

  • Updated the user interface for the Networks, Hosts, and Settings pages.
  • Added “Get Connected“ information to the Documentation section of the administration portal.
  • Added a setting that allows you to disable user group synchronization when SAML is active, which lets you configure local user groups independently from your IdP. 

Fixes

  • Fixed an issue with bundling profiles for Windows connectors.

Discontinuations

  • Discontinued support for Internet Explorer 11.

February 16, 2021

Improvements

  • Upgraded the OpenVPN Cloud server infrastructure.
  • Added support for DNS client registrations. For example, when a client connects to the VPN, a DNS record that includes the client’s hostname and IP address is added to your DNS server.
    • Note: This feature can only be enabled by the OpenVPN Support team — you must open a support ticket to make the request.

Fixes

  • Fixed an intermittent issue where VoIP communication didn’t work correctly in some cases.

Discontinuations

  • Discontinued support for TLS 1.0 and TLS 1.1.
    • Note: Email notifications sent January 12, 2021, and February 9, 2021.

February 10, 2021

Improvements

  • Minor improvements to OpenVPN Connect app authentication.

January 27, 2021

Improvements

  • Minor improvements to OpenVPN Connect app authentication.
  • Upgraded the OpenVPN Cloud server infrastructure.
  • Added validation to ensure that VPN clients that don’t have web authentication support are not allowed to connect to a VPN that requires web authentication.

January 13, 2021

Improvements

  • Updated all OpenVPN URL addresses in the email notification templates.

Fixes

  • Fixed an issue where administrators weren’t receiving email notifications.

December 16, 2020

Features

  • A feature was added to allow each account to have multiple administrators.

Improvements

  • The administration and user portals were moved to the openvpn.com domain.
  • Added validation to disallow non-routable subnets.

December 2, 2020

Fixes

  • Fixed an intermittent issue where users weren’t able to proceed with web authentication.

November 3, 2020

Fixes

  • Fixed an issue where an access group wasn’t providing access to a service, even though the service was correctly configured as the access group’s destination.

November 2, 2020

Improvements

  • Added the Connect Auth setting to define the default value for user group authentication. 
  • Added the option to force Connect Auth on each connection attempt.
  • When setting up a user or group, administrators can now choose to allow or disallow the option for users to “trust this device”.
  • Updated the SAML user group mapping page.

Fixes

  • Fixed an issue where email notifications weren’t being sent.

October 27, 2020

Fixes

  • Fixed a display issue that affected new VPN regions and the list order of the continents.

October 14, 2020

Improvements

  • Minor improvements to the algorithm that monitors the number of active connections.

Fixes

  • Fixed a SAML group mapping issue.

October 8, 2020

Improvements

  • Unified authentication handling for the user portal and the OpenVPN Connect app.

September 24, 2020

Features

  • Added email notifications about subscription utilization and offline connector events.

Improvements

  • Changed the naming convention for profiles that are downloaded from a browser.
  • Added an “all regions” option to the user group VPN region parameters.
  • Added the ability to filter users by VPN region on the status page.

Fixes

  • Fixed an issue where disconnected clients were shown as online on the status page.
  • Fixed an issue where users were able to access the VPN egress network subnets in a custom topology.