Changelog

See the new features, improvements and bug fixes of UserLock.

October 29, 2025

New features

  • Custom credential provider for Windows Hello PIN, improving the MFA experience and security.

  • Custom credential provider for Pre-Logon Access Provider (PLAP), improving the MFA experience and security.

  • Windows Server 2025 RemoteApp connections now use the custom credential provider, improving the MFA experience and security.

  • Reporting management for logon denied events with User Account Control (UAC) session type.

  • Remote agent communication with UserLock over the Internet, without VPN or IIS server.

  • Certificate authentication for UserLock Anywhere.

  • Client certificate verification for UserLock SSO.

  • New interface with reorganized sections: Dashboard, Environment, Access Policies, Activity, Reporting, and Server settings.

  • Pages displaying all Active Directory entities (machines, users, groups, OUs) with AD attributes, navigation links, and statistics.

  • Dedicated dashboards for each entity (user, machine, group, OU) showing activity, applied policies, and filtered reports.

  • Dedicated pages and step-by-step wizard for each access policy type (MFA, time, machine restrictions, etc.).

  • Custom views system available on all pages (filters, columns, sorting) with save and share options.

  • Admin actions panel tracking ongoing and completed administrative operations in real time.

  • Reports for admin actions and configuration changes ensuring complete audit traceability.

  • Spanish and Japanese language interfaces added.

Improvements

  • The custom credential provider now wraps around the Windows credential provider.

  • The mechanism of the "Close previous session" feature of the credential provider has been improved.

  • The mechanism of the "Logons without UserLock connection" feature of the credential provider has been improved.

  • Improved recovery codes and rate-limiting mechanisms.

  • Terminology and labels revised for better alignment with Active Directory and administrator workflows.

  • Clearer, task-oriented navigation structure.

  • Simplified access policy editor with inline explanations and easier policy management.

  • Redesigned reporting with new charts, instant display, and improved performance.

  • Enhanced report scheduler with direct-link delivery by email.

  • Server settings reorganized for faster access and clearer layout.

  • Unified interface and behavior across web and desktop consoles.

Changes

  • MFA is no longer prompted before password changes.

Bugfixes

  • The Wi-Fi session reset database records have "VPN" as the session type.

  • Timeout issues in the credential provider.

  • The behaviors for the "Ask for MFA" and "Force MFA" configurations of the "Logons without UserLock connection" feature are not correct in the credential provider.