Archived Release Notes

Due to documentation changes, offline copy of documentation is no longer available via the Management Console.

4.6.8

4.6.8
16 May 2024
New Features
Support for Trellix Encrypted USBKIOSK can now decrypt and scan Trellix encrypted USB drives using a USB password.
Post-Scan Actions for files inside disk image filesAfter scanning, KIOSK can copy files from within disk image files to a network share/MFT/Media. Details here: [Processing virtual disk files](Processing virtual disk files)
Support for scanning nested Disk Image FilesThe KIOSK functionality enables comprehensive deep scanning of disk image files by seamlessly mounting and scanning all nested files within, ensuring thorough analysis even in the presence of multiple layers of disk image files.
Enhancements
Improved scan speed for small filesWe have enhanced the scanning mechanism to speed up the processing of small files. The self-scan speed has significantly improved in this version. Detailed performance metrics are available on this page: [Performance measurement of Self Scan](Performance measurement of Self Scan)
Enhanced Scan Limits setting for file extensionsAdministrator can configure file extensions that users are not allowed to select for processing in the KIOSK UI. Note: Scan limits do not apply to the Simplified Workflow.
Improved UX for scanning disk image filesKIOSK now displays the scanning progress for files inside disk image files, and users can view detailed scan results for these files after scanning (via the KIOSK UI or session logs).
Improved application log for engines statusDetailed engines information and status are now shown in the application log when issues occur.
On-Screen Keyboard on KIOSK UI for ADFS LoginAn on-screen keyboard is now available for login using ADFS on the KIOSK UI.
Enhanced Authentication with Nested AD GroupsKIOSK now more accurately authenticates users within nested AD groups.
Improved detection of external CD/DVD ROMUsers can scan CD/DVD after starting a session on KIOSK and connecting an external USB CD/DVD ROM.

4.6.7

4.6.7
17 April 2024
Memory OptimizationAddressed an issue where the KIOSK UI experienced excessive memory usage when scanning with a high number of threads. Optimizations have been applied to the memory management processes of KIOSK UI, specifically tailored to handle large-scale thread operations more efficiently.
12 April 2024
FeaturesDescriptions
Customizable Disclaimer PageAdministrators can customize the disclaimer page of the KIOSK user interface. Admins can create a custom disclaimer page using an HTML file and upload this custom page for the corresponding language. (Note: Currently, there is a limitation where customized disclaimer files cannot be applied to group instances from CM7.)
Enhancements
File Limit SettingsImplemented features to limit file size, total number of files, and total file size when users choose to copy files to a network shared drive without processing through Metadefender Core. (Note: These limits do not apply to retrieving files from MFT).
Disable USB ScanAdministrators can now disable the USB scan feature on the KIOSK UI. Administrators need to disable the "Allow user to browse for files" and "Allow user to process all files" options in the KIOSK console. In this case, users will only be able to perform other actions (such as: Retreive file from MFT) on the KIOSK UI.
Improved UX for Copying Files to CD/DVDEnhanced user experience when copying files to CD/DVD. Currently, KIOSK does not support wipe for CD/DVD. If an administrator configures wipe before copying files to CD/DVD and a user attempts to copy files to a CD/DVD with existing data, KIOSK will display an error message and allow the user to change to another blank CD/DVD to copy files.
Fixed Bugs
MFT File Retrieval IssueFixed an issue where files could not be retrieved from MFT when the option "Do not process files with Metadefender or MFT server" was enabled. This issue has been resolved in this version.
Login Issue for Users in AD Groups with Hebrew CharactersFixed an issue where users couldn't log in if they belonged to an Active Directory group with Hebrew characters in the group's common name.
Known Issues
The simplified workflow with the file size limitationThe simplified workflow is currently optimized to streamline user operations. So the limits related to file size/total file are not yet supported on the simplified workflow.

4.6.6

4.6.6
26 March 2024
Security UpdateImproved security measures for the KIOSK Console to enhance overall system security.
27 February 2024
FeaturesDescriptions
Support for ADFS Authentication in KIOSK UI and ConsoleAdmin can configure authentication for KIOSK (Console/UI) through the SAML protocol. [More info](More info)
Password Requirements Before Copying Files to USBUser can enter a password to encrypt files retrieved from MFT before copying them to the destination USB.
File Size Limitation for ScanningLimit the size of files that users can select for scanning. Admins can configure the maximum size of files on the KIOSK/CM console that users are allowed to scan through KIOSK UI.
Total File Size LimitationLimit the total size of files that users can select for scanning. Admins can configure the maximum size of the total files on the KIOSK/CM console that users are allowed to scan through KIOSK UI.
Total File Quantity LimitationLimit the total number of files that users can select for scanning. Admins can configure the total file quantity on the KIOSK/CM console that users are authorized to scan through the KIOSK UI.
File Blocking by ExtensionSupports users blocking files by file name extension. Admins can configure file extensions that they want to block on the KIOSK/CM console. KIOSK will block these file extensions without uploading them to MD Core server to get scanning results.
Display Incident Detections on CM ConsoleSupports users tracking incident detections on the CM Console. Admins can track incidents originating from KIOSK, users, or sessions.
Support for Encrypted USB Viasat UK Freedom 100Added support for encrypted USB Viasat UK Freedom 100.
Embedded Sandbox Engines in KIOSKSupports scanning files with an embedded Sandbox engine in KIOSK.
Enhancements
Improved File Copy SpeedImproved file copy performance by increasing the number of threads copying files simultaneously. Admins can configure the thread count on the KIOSK/CM console. [More info](More info)
Fixed Bugs
Could not select files for scanning IssueFixed the issue where users could not select files for scanning when the "Email current user" option is enabled.
Issue with custom language configuration on KIOSK ConsoleEnhanced upgrade mechanism to ensure system configurations are updated correctly.
KIOSK UI FreezingAddressed issue where KIOSK UI would occasionally freeze when performing tasks with encrypted USB.
Black Desktop Screen on Hardened ImageFixed issue where the screen turns black after running KIOSK for a period of time on the hardened image.
CD/DVD Ejection IssueFixed issue where KIOSK would fail to perform tasks after users ejected CD/DVD while scanning with KIOSK.
Issue with Manifest FileImproved checks and handling for manifest files to ensure more accurate system operation with manifest files in the new version.
Unable to save user password at "Enter Vault server to upload files to" optionFixed issue the users were unable to save their password after updating the password for "Enter Vault server to upload files to" previously.
Wipe Data on Bitlocker DriveFixed issue where users couldn't delete data on Bitlocker drive when wiping the drive with KIOSK.

4.6.5

4.6.5 Hotfix

5 Jan 2024

Major release with new features and enhancements
Failed to copy archives with large child filesA critical issue when transfering a large amount of files to MFT has been found and fixed

4.6.5

28 Dec 2023

Features
Navigate to Sub-Folders on Network DriveUsers can now navigate to sub-folders on a network drive when performing a Copy-To operation
Hidden Partition Information in Scan ReportAdded information about hidden partitions in the scan report for comprehensive insights
Improved Remaining Scan Time CalculationEnhanced the accuracy of calculating the remaining scan time
Enforce Local Login SettingIntroduced a setting to enforce local login, enhancing security measures
Stop Processing Files on BlockAdded support to halt the scanning process when a specific number of files are blocked
Hide Default English Language in KIOSK UIThe administrator now has the option to hide the default English language in the KIOSK UI
Improved Scan Result Display SpeedEnhanced the speed of displaying scan results for a more efficient user experience
Anti-Tamper Feature ConfigurationEnhanced the anti-tamper feature, allowing detailed configuration from the KIOSK console. (UI restart required after updating "Active Keyboard Filter" setting)
Enhancements and fixes
Improved AD User AuthenticationImproved the ability to authenticate with Active Directory (AD) user credentials without requiring domain information input on the KIOSK UI
Syslog Result Log SuppressionEnhanced KIOSK to suppress result logs to syslog at the beginning of the scanning process
Enhanced SecurityImplemented additional security measures for a more robust system.
Fixed Bugs
DataLocker Sentry ONE Unlock IssueResolved the issue where DataLocker Sentry ONE did not unlock during slow connections to its management server
UI Hang during Copy-To to Insufficient USB CapacityFixed the UI hang issue when performing Copy-To to a USB with insufficient capacity
KIOSK User Login Issue after Assigning to Primary AD GroupFixed the issue where users couldn't log in with KIOSK after being assigned to the primary group in AD
Disk Management issue with OMVAIn the latest release of OMVA (version 2.0.9), we have addressed an issue where OMVA was not functioning optimally with Symantec and Disk Management.
Known Issues and limitations.
Exit Credential Feature Configuration ResetThere is a known issue where the configuration of the Exit Credential feature may be reset after upgrading to the new version
Unable to save user password at "Enter Vault server to upload files to" optionWill be addressed in the next version
Data are not deleted after wipe Bitlocker

4.6.4

14 November 2023Major release with new features and enhancements
Features
Enhance Security with Anti-tamper Hardening OptionCopy&Go secondary media handling

When enabling the feature from WebMC, default Windows input compounds will be blocked and cannot be exploited to escape KIOSK mode.

  • Notes: The shortcut to turn off KIOSK application is changed to ALT+S
Automatically unlock and process encrypted USBs with organization passwordOrganization-level alternative decryption security keys can be provided in management console and used as pre-configured password (max to 2 entries) to unlock encrypted USBs.
Simplified workflowThis new and minimal workflow is introduced to support plug-and-play media scanning with automatic decryption and result display (notes: when it is ON, the full workflows for Employee and Guest are disabled.)
Support files redaction, complete the workflows with Data Leak Prevention

Besides sanitizing infected files and detecting potential leak, KIOSK now is able to redact/substitute sensitive information and watermark files.

  • Notes: The new term for sanitized and redacted is now Remediated
Support rescan retrieved files from Vault
  • Previously KIOSK allows to rescan the retrieved files from a directory, now this feature is available for an integrated Vault.
Support HCI network volumeThe new version of OMVA 2.0.8 comes with new KIOSK is compatible with Cluster Shared Volumes in HCI (Hyperconverged infrastructure)
Enhancements and fixes
For Hardened image
  • KIOSK is compatible with Windows Defender
  • KIOSK starts from service.
Improve the self-scan featureIt’s now possible to schedule self-scan on a certain weekday
Enhance the labeling of CD-ROM/DVD/BD-ROM in the scan resultScan results and log now show the correct media type for CD/DVD and Blueray disc
Several defects have been addressed.
Known Issues and limitations.Will be addressed in our next versions.
The power options in Start Menu sometimes disappear after closing KIOSK.
Sometimes, File Explorer will be triggered behind KIOSK Application.
KIOSK currently does not have the capability to retry entering the password for Kanguru Defender 3000.
Set Settings cannot apply Anti-tamper Hardening to all KIOSK instances.
Cannot trigger Self Scan by clicking SCAN NOW because Simplified workflow already starts a session.Workaround solution: Admin can configure Schedule Self Scan and enable option Allow Self Scan to cancel any currently running scan to trigger Self Scan

4.6.3

31 August, 2023Release focused on enhancements and bug fixes
Features
Copy&Go secondary media handling

Introduced new button to allow choosing to insert secondary media at the start or end of a Copy&Go session

A new config option now exists in File Handling of a workflow to only allow inserting secondary media at the end of a session

Exit Kiosk with administrator AD credentialsExtended the configuration to allow exiting the Kiosk with AD administrator credentials
NTFS ADS detectionAdded ability to detect and warn that an Alternative data stream was found in a processed file. This information can be seen in session history and in the reports.
Disable Vault ID displayVault server configuration allows to disable showing any Vault ID information on the UI
Support for additional encrypted devices
  • DataLocker Sentry ONE
  • Viasat Eclypt
  • Viasat Freedom 600
My OPSWAT integrationInitial preparation for basic inventory & license reporting support in a future My OPSWAT release (end of September)

4.6.2

26 June, 2023

Vulnerability fixes

OMVA Release: 2.0.7.174

Features
Security note

The system administrators are required to make Kiosk machine more secured by following actions:

  1. Set a BIOS password
  2. Enable TPM and Secure Boot in the Windows system
  3. Turn on BitLocker encryption
Fixes
System hardening

4.6.1

8 May, 2023Security patch release - 4.6.1.9996
Fixes
System hardeningOptimized Windows system settings to maintain uninterrupted Kiosk operation and reduce interference
18 April, 2023Release - 4.6.1.9995
Features
Preloading passwords for encrypted archivesAllows users to preload list of passwords for encrypted archives before the scanning
Enforce remote loginAdministrators can disable remote login for local, AD, or SSO users
ScreensaverKiosk can play a video after a predefined amount of idle time
SDMS MkIII AES Duoulock supportSDMS MkIII AES Duoulock can be unlocked and processed
Media typesThe admin can configure Kiosk to accept encrypted USBs only
Fixes/Enhancements
SSL certificatesCertificates added in the management console are stored in the Microsoft Certificate Store
Copying to discFixed issue that prevented copying from one disc to another in the same session
Password protected archive\document handling

Corrected issue where certain passwords would not unlock files and Kiosk would re-prompt for input.

Improved encrypted archive handling when scanning with Vault.

Time filter in custom log displayRemoved the custom time setting in Dashboard, Application Log, Windows Event Log, & Visitor Log
Verbose log compressionThe support package is compressed at the highest level
Time format of [time] for Vault serverhh:mm:ss is changed to hh-mm-ss
Scanning durationEnhancement of performance when utilizing existing process results
Copy&GoAll preparation actions need to be done prior to the scanning and the session ends without additional user actions

4.5.8

11 October, 2022
Features
Statistic information for Central ManagementAdded a periodic system health check and provided detail of session statistics for Central Management, for tracking purposes.
Hide Vault access ID on UIThe Vault access ID is now hidden on the UI. Users can temporarily reveal the ID for 3 seconds.
Sessions finish automaticallyEnhanced the ability to complete session automatically without waiting for user actions. The session waits on pages where user input is required or results are necessary to view.
Visitor Management configuration

Specific visitor questions can now be enabled/disabled.

Management or Contact persons can be configured to not receive session reports attached to visitor check-in emails.

If no further questions are configured in a workflow, visitors are navigated to media detection screen immediately.

Fixes/Enhancements
UI unresponsivenessScanning a large amount of data may cause the Kiosk UI to hang indefinitely. Kiosk can detect this hanging, terminate and revive the UI to the state where hanging occurred.
Scanning archive filesFixed mounting issues with TIB/VMDK/VHD archive files.
File retrievalEncrypted devices are now supported in file retrieval.

4.5.7

30 August, 2022
Features
SMTP configurationSender input is mandatory for email settings (e.g., From field). The configured user for SMTP access needs to have permission to send as a configured email sender.
Email improvements

Session reports can be emailed to multiple recipients.

Pre-defined variables can be inserted into the body of the email to show some select data from a session.

Password change required on first loginNewly created users are required to change their password on their first login to the Management Console
Active Directory configuration in Visitor ManagementAdministrators can configure both AD users and groups as Contacts for Guests
Auto-selection of workflowAdministrators can either let employees select a workflow or automatically move forward with the first matched workflow an employee can use
Fixes/Enhancements
Custom command scriptThe syntax now works the same as on a DOS terminal
Scanning Pause/ResumePausing a scan requires additional confirmation
User authentication

Corrected the display for custom authentication on changes of Display disclaimer screen.

Authentication performance was also improved.

Performance enhancement for AD queriesSped up the performance when connecting/querying to AD server

4.5.6

24 May, 2022

This release focused on new features

OMVA Release: 2.0.6.167

Features
Non-authenticated workflowsKiosk administrator can create multiple workflows for guests to select on demand.
Email templateEmails can now be customized with logos, text colors, and font sizes for workflows.
Fixes/Enhancements
Visitor configurationCorrected issue where loading a large amount Active Directory users would take a long time for Visitor Contact configuration.
Retrieval pageDirect navigation to the Vault retrieval page occurs when only one retrieval option is enabled.
syslog dataExpanded session data in json format for syslog messages.

4.5.5

28 March, 2022This release focused on new features and bug fixes/enhancements
Features
Upgrade in-placeUpgrade of Kiosk no longer requires uninstallation of the previous version. This allows for history logs to be maintained in between version upgrades. The original upgrade method still operates the same.
Copy empty folderEmpty folders from scanning sources are copied to local/network destination after scanning
Fixes/Enhancements
Skipped file reportingFiles not able to send to Core for scanning are now considered as Skipped files. Customer can configure to show/hide skipped files in their workflow printing options.
Trust self-signed certificatesAdministrators can add self-signed certificates to trust directly in the Management console
File integrity monitoringCorrected issue where Kiosk would be disabled by file monitoring when the feature was disabled
Stale processing resultsAny change to a Core workflow will require a file to be analyzed to ensure results reflect the latest policy configured
Self ScanInaccessible system files are skipped during a Self Scan to avoid indefinite retries to scan

4.5.4

20 December, 2021This release focused on new features and bug fixes/enhancements
Features
Country of OriginThe Country of Origin feature helps administrators add more restrictions on the scanning result by specifying which countries a publisher resides in as forbidden. Files published from forbidden countries are considered blocked.
Configurable printing per session typeAllows printing to be enabled/disabled separately for each action Scan/Retrieve/Wipe
Fixes/Enhancements
Scan result for encrypted archives in Copy&Go modeFixed issue that showed both Allowed and Blocked status on the same file
Slow processing time for a large datasetImproved performance in processing large datasets

4.5.3

2 November, 2021This release focused on bug fixes and enhancements
Features \ Enhancement
Skip Print button displayed for all session flowsAdded Skip Print button when Print button is displayed
Editing workflow with many AD members assignedOptimized performance with workflow loading to allow workflows with a large amount of members assigned to be edited
Support for updated encrypted device software versions and retrieving filesAdded support for updated versions of some encrypted device software and corrected instances where retrieved files were download to incorrect volumes leading to failures
Fixed
Reports being stripped from emailsModified content type in email reports to prevent specific email policies from blocking attachments
Retrieve files to discFixed issue that prevented files to be retrieved and copied to a disc
Session history failing to load in certain casesCorrected background sorting of session history that caused for sessions to not be displayed in the Management Console

4.5.2

16 September, 2021This release focused on support for nested group login, archive file selection, session report sent for Visitor Management and bug fixes
Features
Nested group support for loginActive Directory with nested group supported for login in Kiosk UI
Archive file selectionSupport multiple selection of password protected archives to scan
Visitor ManagementSession report is sent to Manager, Contact, and Guest
Fixed
Phone detectionFixed issue with phones not being detected
Central Mgmt config push affecting SSL settingsPrevented export/upgrade of certificate settings
Mismatch file result display in Session HistoryCorrected the display of mismatch result in session report
Configuration importFixed issue where certain settings were not maintained on a configuration import
Email session reportCorrect cases where email was sent without a sender
Browse windowRefined UI browsing page

4.5.1

27 July, 2021

This release focused on blank disc detection, CM set settings, and OMVA logging enhancements.

OMVA Release: 2.0.5.137

Features
OMVA LoggingAccessible logging in json format generated when plugging & validating media into a machine with OMVA installed
Printer StatusNew icon on UI to show current printer status
Session history username filteringAble to filter Session History in the Management Console by username
Fixed
Copy file to discCorrected detection of a blank disc as destination media to copy files to
"Set Settings" applied to all instancesFixed issues causing Central Management failing to "set settings" to other Kiosks. Extending timeout settings in CM may be necessary
Workflow selectionAdjusted workflow selection for better usability
Session log saved to network shareFixed case where the session log was not properly saved to a network shared folder
Management Console loginModified Management Console behavior to only allow a user to be logged in from a single browser
USB whitelistingSerial number to include vendor name and model

4.5.0

Management Console support for Internet Explorer has been dropped
15 June, 2021

This release focused on User workflow selection, adding Spanish translation and other bug fixes.

OMVA Release: 2.0.4.130

Features
User workflow selection

A user may now be assigned to multiple workflows either by direct assignment or group assignment.

When logging in to a Kiosk session, users will be presented with their assigned workflows to choose.

Spanish translationAdded support for default Spanish translation
Mail configuration testWhen configuring SMTP settings, administrators may now test their settings within the mgmt console
Fixed
OMVA failing to validate media after a rebootFixed issue where media validation no longer worked after reboot in certain domain environments
Saving session logs to network sharesCorrected issue that prevented session logs from saving to networks shares due to permission issues
Allow sessions to end automaticallyModified session flow to adhere to UI timeout settings when the session is done
Active Directory load when editing workflowsFurther enhancements to speed up the AD user & group loading when a workflow is edited
Local user password restrictionsRemoved extra restrictions on passwords for local users and increased the minimum length to 12 characters

4.4.12

6 May, 2021This release focused on file limit configuration with Vault processing, correcting VMDK with Linux file systems and other bug fixes.
Features
Vault processing - File size limitFile sizes can now be limited to dictate what is uploaded to Vault for processing
Vault processing - File count limitThe amount of files can now be limited when processing files with Vault
Copy-to media device info in loggingWhen files are copied to secondary media, the device information of this media is now included in the session logging
Fixed
Processing VMDKs with Linux file systemsFixed issue with failing to process contents in a VMDK with Linux file systems
Processing discs with CDFS file systemCorrected detection error the prevented processing discs with CDFS file system
Hebrew language displayRestored Hebrew display when browsing for files and selecting copy-to directories
Management Console login case insensitivityModified mgmt console login to not require case sensitive username input
Retrieve available files from VaultEnhanced Vault file retrieval to not display files that are not approved by a supervisor
Email reportsFixed issue where email reports were sent to incorrect recipients with similar names

4.4.11

6 April, 2021This release focused on syslog support for TLS over TCP and other features & bug fixes.
Features
syslog support for TLS over TCPsyslog can now be configured to send messages using TLS
USB Copying Whitelist and Retrieving filesThe whitelist to allow USBs to copy files to now also applies to retrieving files from Vault or directory
Battery percentage displayIf MetaDefender Kiosk is deployed on a battery powered system (i.e. tablet\laptop) a battery power indicator will be displayed on the user interface in the bottom right corner
Disable hash calculation for non-processing sessionFor workflows where no processing is configured, the hash calculation of files can be disabled to allow for a faster session completion time
Fallback to OS logged in user when copying files to a directoryFile handling to copy files to a directory now has the ability to enable copying files as the OS logged-in user if copying using the Kiosk user session credentials fails
Fixed
Media detection

Corrected further issues with media detection:

  • encrypted devices being detected as CDROM
  • media insertion not being detected after a wipe event
Wipe functionality

Corrected further issues with wiping media:

  • encrypted device handling attempting to wipe the un-encrypted disc partition
  • wiping hanging on completion
  • device detection not operating after a wipe event
AD User & Group load in workflowsImproved the mechanism to load the list of AD users & groups to better handle large amounts
Retrieve files from VaultFixed a case where authenticating a user to Vault for retrieving files was failing
Send email only when blocked files are foundRestored the expected behavior of the workflow email setting to only send a session report email when a blocked file is found in a session

Added a survey in the Management Console to collect feedback

4.4.10

4 February, 2021This release focused on Digital session log signing and bug fixes.
Features
Digital signing of session logsSession logs can now be digitally signed with a configured certificate to ensure logs have not been tampered with
Supported browsers for the Management ConsoleThe Management Console supports Chrome, Firefox, and Edge browsers. Internet Explorer and others are not officially supported
Fixed
Media detectionEnhanced media detection logic to reduce inconsistent issues with misdetection or improper identification of media
Copy & Go and copying to user media destinationCopying files to a secondary media is now supported when Copy & Go processing is enabled
SSO Management console login from a remote systemFixed a redirection issue that caused users to not be navigated into the mgmt console after a successful SSO login
Guest workflow file retrievalCorrected issue where Guests were not allowed to retrieve files if certain user authentication settings were set

4.4.9

12 January, 2021

This release focused on user experience enhancements & bug fixes.

OMVA Release: 2.0.3.96

Features
Estimated time remaining display during processingProcessing progress indicator now shows current time elapsed and estimated time remaining
Retrieve files from Vault as a GuestGuests can retrieve files from Vault using a Guest ID
Multiple copy-to directory supportMultiple copy-to directories can be configured in file handling. Users can select which directory to copy to when the user copy selection is enabled.
Browse file selection totalsOptions for browsing files can now be set to display the number of files selected and the total size of the selection
Fixed
File\Session history exportCorrected issues with the export taking too long to generate and timing out connections
Retrieve files from Vault as an AD userFixed problems with retrieving files from Vault for certain AD user configurations
OMVA multiple media manifest supportAdjusted OMVA support for handling multiple media manifests on a device

4.4.8

8 December, 2020

This release focused on Single Sign On user login to the Management Console & bug fixes.

OMVA Release: 2.0.2.94

Features
SSO authentication for the Management ConsoleManagement Console login settings have been expanded to allow connecting an Identity Provider via SAML 2.0
Fixed
Custom workflow editor load time for a large ADReduced the amount of time it takes to load the AD user\group list when editing a custom workflow
Periodic Core testFixed eicar test string generation that was affecting the detection rate
OMVA non-ascii path supportCorrected OMVA support for handling file paths with non-ascii characters which would result in blocking media

4.4.7

10 November, 2020This release focused on Active Directory user login to the Management Console & bug fixes.
Features
Allow AD users to log in to the Management ConsoleManagement Console login settings have been expanded to allow connecting Active Directories to allow users/groups to login
Fixed
Session log directory in Central ManagementFixed validation error that prevented setting the session log directory from Central Mgmt
Automatic exportCorrected non-ascii errors with automatic export and added Scanning System information to the csv

4.4.6

13 October, 2020This release is focused on bug fixes.
Features
Configurable result for un-processed large filesManagement Console administrators can now specify if a file should be allowed or blocked if it exceeds the file size limit for sending a file to MetaDefender Core.
Fixed
Floppy drives consistently spinningFixed issue where certain floppy drive models would spin up consistently while Kiosk was running
Workflow login selectionCorrected instances where mapping a logged in user to a workflow did not follow the configured order
File size process limitAdjusted file size calculation to prevent errors with setting file size limit for processing files
Core URL validationRepaired error detection that would prevent connecting a Core via hostname

4.4.5

15 September, 2020This release is focused on simplifying HTTPS configuration within the Management Console and bug fixes.
Features
Configure HTTPS from the Management ConsoleManagement Console administrators can now configure listening port and HTTPS settings from within the Management Console
Configurable boot sector processingBoot sector files can now be disabled from appearing in browsing for files to process and not included when processing all contents of media
Fixed
UNC file path support for retrieving filesFixed issues where retrieving files from a UNC path would fail
User question display in session exportSession export data now displays the user question and answer to the question in order
Copying files to discCorrected instances where long file paths were failing to be copied to discs

4.4.4

18 August, 2020This release is focused on Configuring the order workflow profiles are used to map a user to, periodic testing of Core servers and bug fixes.
Features
Configure order of workflow profilesCustom workflow profiles can now be manually adjusted to indicate the order in which users are identified to belong to
Periodic Core testKiosk can be configured to periodically send an EICAR file to ensure Core's detection is functioning
Fixed
Email session reportCorrected issues with connecting to SMTP, sending emails to the logged in user and guest users
Authentication failure when Remote AD SSL is enabledFixed active directory communication to not attempt the default LDAP port when SSL is enabled
Automatic export of session\file history logsExport log path configuration was failing to save and the file history export was lacking information, this has all been corrected
UNC path support for session logsFixed issue that prevented configuring a UNC path for specifying where session logs were written out to

4.4.3

16 July, 2020

This release is focused on Copy & Go processing, ability to retrieve files from a directory and configuring the install password for OMVA

OMVA Release: 2.0.1.92

Features
Copy & Go processingNew Core processing option that allows copying files to the system and removing media before file processing begins
Retrieving files from a directoryAbility to retrieve files from a local or network share and run the files through Core before copying to the inserted media
OMVA configurable uninstall passwordThe uninstall password can now be modified for deployments to endpoints
Whitelist for secondary mediaWhitelist can now be specified for copy-to media
Fixed
Language importCorrected issue where languages were not allowed to be edited after importing configuration of a previous release
IP support for SMTP host configurationFixed issue where connecting to an SMTP host configured by IP would fail
Hostname for syslogsyslog server can now be configured by either IP address or hostname
Users and Groups synced in workflows on Central MgmtThe users and groups re-assigned to other workflows on Central Mgmt now updates as expected and syncs to the Kiosk instance's settings

4.4.2

5 June, 2020This release is focused on fixing issues with remote Active Directory support
Fixed
Remote Active Directory connection and assigning users and groups to a workflowFixed domain identification issues that would block adding an AD server. Corrected problems where displaying the users and groups of a server would fail.
Usability of selecting groups to assign to a workflowAdded the ability to search the groups list to find specific entries

4.4.1

15 May, 2020This release is focused on adding support for multiple AD servers and log retention
Features
Multiple Active Directory supportMultiple active directories can now be added to expand the coverage of users allowed to use Kiosk
Automated log retentionApplication logs and session history can now be set to automatically clean up records older than a configured time span
Fixed
Issues with user authentication and foreign language passwordsFixed issues where users could not authenticate when their passwords contained foreign characters
Username & user response variables for the copy-to directoryCopy-to directory validation has been fixed to allow the user name and user response variables
UI exit password settingFixed an issue where the exit password was changed when user authentication settings were modified
Offline systems could not locally access the mgmt consoleUpdated internal management console settings to allow offline systems to access the console locally
Selecting groups to add to a workflowOnly allowed groups are displayed to assign to a workflow
Central Management v7 configuration syncCorrected many issues where settings disappeared from the Central Management view or were applied incorrectly

4.4.0

16 April, 2020This release is focused on adding NGINX to serve the Management Console, allowing Guests to receive summary reports via email, and providing passwords with encrypted archives when processing with Vault
Features
NGINX serving the Management ConsoleIIS Express has been replaced with NGINX to power the Management Console
Guests can email session reportsGuests are now prompted to enter an email to session reports, when emailing reports is enabled
Send passwords with encrypted archives when processing with VaultWhen an encrypted archive is identified, a password can be input to submit the file to Vault for processing
Support for Kanguru Defender Elite 200Added support for processing Kanguru Defender Elite 200 USB
Fixed
Setting custom export date rangeFixed the date selection to allow setting a custom date range to export session or file history
OMVA install via automated deploymentsModified OMVA installation to work successfully in remote deployments
Hash verification copy failure with extension-less filesCorrected an issue with hash verification failing on files without an extension
Copying files to a network share as GuestCopying to a network share now utilizes the credentials of the user logged in to the system to copy files in the Guest workflow

4.3.11

13 March, 2020This release is focused on the flexibility with the Vault copy-to directory structure, file deletion confirmation for users and other bug fixes
Features
Specify Vault copy-to directory structureAdministrators can now indicate the directory structure of how files are uploaded to Vault when configuring a Vault server
Allow users to confirm to delete all blocked filesWhen blocked file handling is set to delete files, an Administrator can now allow users to confirm whether the blocked files should be deleted or not
Fixed
Copy-to media blocked with OMVACopying all allowed files to a secondary media that was wiped would still cause OMVA to block the media. This workflow has been modified to allow OMVA to unblock the media as expected.
Configure syslog settings from Central ManagementA managed instance's syslog settings can now be configured via Central Management v7
Single password use to unlock multiple encrypted archivesFixed an issue where the checkbox to supply a single password to multiple encrypted archives was not being respected
AD groups are only allowed to be added to a workflow profileOnly AD group objects will be allowed to be added to a workflow profile to reduce confusion with authentication issues
Sanitized file handling with the custom command line scriptCorrected an issue where sanitized files were not handled in a configured script

4.3.10

11 February, 2020This release is focused on bug fixes
Fixed
Detection of multiple Linux partitionsA device with multiple non-Windows partitions can now be browsed through and processed
Vault entry changes applied automatically to selectionsAny changes made to an entry in the Vault server list are automatically applied across all configured selections of that specific server
Windows XP+ support for OPSWAT Media Validation AgentOMVA now supports Windows XP and above
Report files quarantined by CoreFiles quarantined by Core are now reported on the session summary without having to configure to have the files removed
Language menu button on the on-screen keyboardCorrected button behavior where the keyboard language button would remain open despite clicking away from it

4.3.9

14 January, 2020This release is focused on Vault upload to user configuration and bug fixes
Features
Specify Vault user to upload files toNew configuration option allows for specifying a Vault user to upload files to in addition to the previous settings of uploading to the user logged into Kiosk or a guest account
Fixed
Retrieve files from VaultFixed issues with downloading files from Vault among multiple users
File sizes displayed in browseCorrected the file size display when browsing for files

4.3.8

10 December, 2019This release is focused on Imaging Media and bug fixes
Features
Image MediaNew process flow allows for an image to be created of the inserted media and uploaded to a specified location (e.g. Vault or directory)
Fixed
IIS Express 10 supportKiosk REST service now runs uninterrupted if the underlying IIS Express is upgraded to version 10
Updated German language stringsGerman language strings are now up-to-date
Blocked sound playbackFixed an issue where the sound byte to alert for blocked files would not play at times

4.3.7

12 November, 2019This release is focused on Visitor Management and bug fixes
Features
Visitor ManagementVisitor management allows the ability for guest users to check-in to an organization via the Kiosk. During the check-in process the guest user accepts any agreements specified by the organization, a badge for the visitor can be printed and contact\admin personnel are automatically notified when a guest has arrived.
Fixed
Korean keyboard character compositionOnscreen Korean keyboard has been fixed to correctly combine Hangul characters
Device whitelisting applies to destination mediaDevice whitelisting is now applied to destination media, in addition to the source media used for processing
Copy files to IronKey USBCorrected behavior where files were copied to the wrong volume for specific IronKey USBs

4.3.6

8 October, 2019This release is focused on Management Console enhancements when Kiosk is managed and bug fixes
Features
Management Console settings locked when instance is managedThe Management Console now has the ability to show details when it is managed. If managed, changes to settings are disabled. Currently supported for Central Management v5, v7 in the future.
Configure the length of time a Vault guest account is validAdministrators can now specify how long a created Vault guest account can remain valid
Fixed
Processing system filesEnhancements made in attempting to process system files that may be potentially locked
File integrity monitor eventUpgraded the visibility of a file integrity monitor event to be included in the syslog application events

4.3.5

10 September, 2019This release is primarily focused on bug fixes
Features
Delete after retrieving filesRetrieving files from Vault can now be configured to delete the files from the server after download
Fixed
Copy to disc folder structureCopying to disc no longer creates a Session ID directory when the no subfolders option is enabled
Settings display on Central Mgmt v7Fixed issues with some fields being improperly displayed in Central Mgmt
LDAP groups workflow profile assignmentCorrected an error where a users logging in to Kiosk were not identified under a user group assigned to a workflow profile

4.3.4

13 August, 2019Release focused on adding Kiosk high availability, Layer 7 load balancer support and bug fixes
Features
Ability for Kiosk to use multiple backup servers during a session

Multiple backup servers can now be configured in the global configuration.

Within a workflow profile, it can be designated for Kiosk to attempt processing a file among any available MetaDefender server during a session.

Support for Layer 7 Load Balancer with MetaDefenderA Load Balancer can now be selected as the primary server for processing files
Regular expression support for media whitelistingMedia whitelisting can accept regular expression rules for more flexibility in configuring allowed devices
Option to disable SSL verification

Certain offline environments cannot successfully verify SSL certificates due to the network structure.

Kiosks in these special instances can be configured to workaround these limitations.

Fixed
Issue with MetaDefender verification only working through TLS 1.0MetaDefender connection testing in the Management Console has been fixed to utilize the latest security protocols when available (e.g. TLS 1.2)
Virtual keyboard inputCorrected ability to insert/delete characters within an input text box rather than only at the ends of the input
Unlock for IronKey D300 Managed devicesUpdated ability to handle different versions of IronKey D300 Managed devices
Interface timeout not triggered while waiting for media to be insertedFixed the interface timeout to apply while waiting for media to be inserted
Updated Custom Authentication Module templateCustom Authentication Module template & tester have been updated to 64bit

4.3.3

9 July, 2019Release focused on adding Kiosk self scan and bug fixes
Features
Kiosk self scanAllows the user to periodically or on demand utilize the MetaDefender Kiosk to scan its file system for possible infection
File handling option to copy allowed files to the original mediaNew copy-to route will wipe the original media and copy all allowed files back to it
Select to not submit special archive files, mounted by Kiosk, to CoreOnly applicable to Acronis backups, virtual hard disks and/or VMware virtual machines. Can now choose to withhold these files from Core if its contents have already been processed.
Prompt users for the password to password protected documentsWhen password protected documents are encountered (Word, PDF, Excel), they will now be prompted for passwords for processing their contents.
Generate a log message and warn the user when disk capacity reaches 80%To help our customers ensure that the Kiosk has sufficient space to operate, it will generate a log message when disk capacity has reached 80% or higher.
Updated Custom Authentication Module sample code to include 64-bitTo better facilitate CAM users in upgrading from V3 to V4, the CAM sample code has been cleaned up and generated in 64-bit
Fixed
Kiosk failing to quarantine read-only filesRead-only files are now supported for quarantining
Fixed VHD mounting that was broken by recent Windows 10 updatesWindows 10 updates changed the case of the name of the drive being attached. Fixed parsing to handle variable case string.

4.3.2

11 June, 2019Release focused on adding the OPSWAT Media Validation Agent, support for Avira-Iron-Drive, and bug fixes
Features
Added the OPSWAT Media Validation AgentThe OPSWAT Media Validation Agent can be downloaded from the Management Console Resources section. This agent can be used to ensure media is processed by a Kiosk before it can be mounted on an endpoint.
Support for Avira-Iron-DriveFiles can now be processed within or copied to an Avira-Iron-Drive.
Fixed
Changes made to the disclaimer not being updatedCorrected issue where making changes to the disclaimer content were not reflected in the UI
Sentry 3 FIPS unlock enhancementEnhanced the unlock mechanism for Sentry 3 FIPS to correctly unlock versions with different behavior
Disabling boot hardening may hangFixed disabling the boot hardening to not cause a hang and fail to update the correct status on the mgmt console for some cases
Central Mgmt synchronization errorAdded more protection to avoid issues with Central Mgmt configuration pushes failing

4.3.1

15 May, 2019Release focused on fixing Management Console logins for all timezones
Fixed
Login to the Management ConsoleCorrected issue where login to the Management Console would fail on certain systems

4.3.0

14 May, 2019Feature release focused on adding user support for the Management Console, support for Non-Windows file systems and minor bug fixes
Features
User login for the Management ConsoleUser login is now required to access the Management Console *In keeping parity with MetaDefender, custom integrations to the REST API with passwords will no longer function. You must set up an API key per user. When installing, you must use the creation wizard to create your first admin user. Admin credentials are no longer created automatically.
Support for Non-Windows file systemsProcessing media content in Ext2/3/4, HFS Plus, HFSX, and APFS file systems is supported
Discs allowed to retrieve files from VaultRetrieving files from Vault can now be downloaded to a disc
Fixed
Enabling boot hardeningSecurity enhancements made to allow boot hardening for all systems
File handling count displayA count of the current file progress is now displayed when files are copied/moved to a destination
Product activation through a proxyOnline activation can now complete successfully via a proxy server

4.2.15

18 April, 2019Feature release focused on internal enhancements for Central Management
Fixed
Improvements for Central ManagementUnder the hood enhancements to allow the management of Kiosk instances to be smoother

4.2.14

9 April, 2019Feature release focused on adding support for VMware virtual machines and bug fixes
Features
Mount and scan VMware virtual machinesAdded support for processing within VMDK files
French translationFrench language can now be selected as one of the default languages
Upload files to VaultVault upload in the file handling of a workflow can now be specified to upload files singularly (with the addition of file scan results) or all packaged within a zip
Password prompt for nested encrypted archivesPassword prompt will be displayed for encrypted archives found within encrypted archives
Integral Courier encrypted USB supportIntegral Courier can be unlocked and processed
Kingston IronKey D300 Managed supportKingston IronKey D300M can be unlocked and processed
Fixed
CEF Extension field formatThe Extension field in the CEF messages have been fixed to conform to correct CEF standard
German languageGerman language strings have been expanded upon

4.2.13

12 March, 2019Feature release focused on processing contents within virtual hard disks and minor fixes
Features
Mount and scan VHD & VHDXAdded support for processing within virtual hard disk files
Fixed
Copying sanitized files would fail for certain users logged into a Kiosk sessionAll users are now able to copy sanitized files to the desired destination
LDAPS connectionConnecting to a directory server via LDAPS has been improved

4.2.12

12 February, 2019Feature release focused on system boot hardening, folder navigation on Vault and allowing copying original with sanitized files
Features
System boot hardeningWith boot hardening enabled the taskbar on the desktop will be not be loaded, thereby disallowing any PC functionality to a user until the Kiosk starts.
Folder navigation when retrieving files from VaultWhen browsing for files to download from Vault, folders can be accessed and downloaded to the desired media.
Copy the original file along with the sanitized versionNew configuration option added for Copy-To actions that will allow an administrator to specify copying the original file along with the sanitized version.
Fixed
Emails not being sent to the user logged into the Kiosk sessionKiosk can now identify the email address of the logged in user from a remote AD server.
LDAPS authentication failureUsers can authenticate using LDAPS functionality with improved routing.
Handling sanitized file naming conventionNow an incremental number is only appended to the file name during copy to avoid file collisions.

4.2.11

8 January, 2019Feature release focused on allowing multiple devices to be wiped in one session and stability enhancements
Features
Wipe multiple devices in one sessionMultiple devices can be inserted at the wipe option selection screen for the wipe to be performed on all devices
Warning message is displayed if a file is not processed by MetaDefenderA warning message is displayed before the session results screen if any file is not processed by MetaDefender
Fixed
Backup server selection when the primary MetaDefender instance is unable to process filesThe decision to use a backup MetaDefender server has been enhanced to ensure a primary MetaDefender instance is not used when it is unable to process files. Any MetaDefender instance that reports problematic issues will be noted on the Mgmt Console and the issue logged in the application log.
syslog message format for TCPSome syslog messages were missing line breaks which caused parsing issues for some syslog management systems when receiving data over TCP
Enhanced retry mechanism for files that are unable to be openedCertain files have some permissions that block Kiosk from accessing them to upload the file to MetaDefender for processing. The ability to retry on these files and allow for successful upload has been enhanced. This does not apply to locked system files.
Processing an iPhone with iTunes installedAfter installing iTunes and then selecting files from an iPhone to process, the selected files would not be processed. Functionality has been restored.

4.2.10

11 December, 2018Feature release focused on expanding support for processing non-Windows file systems and simplifying blocked files reported in session reports.
Features
Blocked results directly reported from MetaDefenderBeforehand, Kiosk would group specific blocked reasons under special categories (e.g. Encrypted Archive & Password Protected Document → Password Protected). This would result in confusion when reading session summary reports and verifying specific file counts against the MetaDefender processing history. Blocked results are no longer grouped under special categories, they are grouped according to the result returned from MetaDefender.
Fixed
Blocked results directly reported from MetaDefenderBeforehand, Kiosk would group specific blocked reasons under special categories (e.g. Encrypted Archive & Password Protected Document → Password Protected). This would result in confusion when reading session summary reports and verifying specific file counts against the MetaDefender processing history. Blocked results are no longer grouped under special categories, they are grouped according to the result returned from MetaDefender.
Custom command line script not runningThere was an issue with the component that runs custom command line script - failing to start and complete the configured actions. This has been fixed.
syslog CEF formatsyslog messages sent in CEF were not formatted according to specifications which caused parsing issues in SIEM servers. The main body of the message is now sent in the Extension section and the log type is sent in the Name section. The severity level has also been corrected to meet the CEF specification.
Processing mobile phones with VaultFixed upload failures when attempting to process a mobile phone with MetaDefender Vault.

4.2.9

13 November, 2018Feature release focused on email, user selection of copy-to directories and stability improvements
Features
Configuration to only send an email report when a blocked file is detectedThe email report can now be specified to be sent only when a blocked file in a session is found, rather than sending an email after every session.
Allow users to select the folder structure of copied filesUsers can now be allowed to select whether to create a high level directory for files to be copied to or maintain the same folder structure as the original processed media.
Fixed
Enhanced progress display for processing TIB filesModified TIB processing experience to follow the archive processing flow. Files within a TIB are displayed during progress, the TIB itself is counted as one file & an indicator in the right hand corner will notify the user that an archive is being processed.
UI will remain responsive when processing large datasetsProcessing large datasets would cause the UI to stop showing updated progress from being displayed near the completion of a session, giving the impression that the UI was hanging. Progress reporting has been modified to allow the UI to be responsive under large datasets for the duration of a session.
Finding users in groups assigned to workflow profilesWith a group assigned to a workflow profile, when a user would log in to Kiosk, there were instances where a user that is a member of the group was not correctly associated not provided the expected workflow profile. This has been fixed.
SD card detection failureCertain SD card readers present information of the media differently, which caused the Kiosk to not detect it. Media detection has been updated to handle this case.
Hash verification when copying to a network shareHash verification has been fixed to work with verifying files were copied correctly to a network share.
Translated strings not updating on the UIA few translatable strings were not being updated for display in the UI. These have been identified and fixed. The default Japanese language strings have also been updated.

4.2.8

22 October, 2018Maintenance release focused on Central Management compatibility
Fixed
Tab selection in Central ManagementScrolling through configuration sections has been removed in the latest Central Management 5.2.3. Overflow sections are now selectable from a dropdown menu.
Vault server configuration import from Central ManagementDue to the change in how Vault server settings are saved in Kiosk, only partial Vault settings were being imported over. This has been rectified.

4.2.7

11 October, 2018Feature release focused on media manifest validation and improvements for stabilized processing
Features
Media Manifest ValidationPreviously, Kiosk only saved signed manifests to the media that had been processed. Kiosk can now be configured to validate and utilize results from a manifest found on the media to process.
Logo and Intro Text on Receipt PrintoutA logo and introduction text can be configured to print onto a session receipt.
Fixed
Process failure logging is now more transparentIf Kiosk fails to send a file to the MetaDefender server, the reason will be displayed in the UI and session result log & printout. Any network connection errors contributing to failures or MetaDefender failures reported to Kiosk will be logged in the Application Log in the Kiosk Management Console. Messages will contain HTTP codes, description and network error messages to enable admins to take proactive action.
Updated bundled 7z component to version 18.05Due to vulnerability issues with older versions, the bundled 7z binaries were updated to the latest version.
Retry logic improved when retrieving results from MetaDefenderIn previous versions, if an error from MetaDefender prevented Kiosk from obtaining results, it would fail quickly and show that the file failed to process. Kiosk will now try harder to receive correct results from MetaDefender if a file has been successfully sent for processing.
Removed curl error logging when a session is canceledCanceling a session can result in canceling active connections between the MetaDefender server & Kiosk. This would result in an unnecessary large amount of curl error logs that are now removed under this specific condition.

4.2.6

Release Date: 11 September, 2018

Features

  • Added support for processing iPhones
  • Ability for users to select which file handling actions to take
  • Added support for DataLocker Sentry 3 FIPS
  • syslog messages can output in CEF format

Fixed

  • Files sizes are displayed when browsing files to process

  • Added more display data to the session log & printout

    • File attributes, partition information, symbolic links found

  • Fixed issues with session log generation

  • Added ability to navigate through user questions

  • Enhanced loading process upon startup

  • Core quarantine results are now reflected in the Kiosk results

4.2.5

Release Date: 14 August, 2018

Features

  • Offload processing to a Vault server connected to MetaDefender
  • Ability to Pause and Resume file processing
  • Enable/disable the Default workflow to restrict user login

Fixed

  • Adjustments to automatic printing at the end of a session
  • Fixed copying to a network share when a Remote Active Directory is configured
  • Support copying between encrypted media of the same type
  • Configurable footer printing for the session receipt

4.2.4

Release Date: 10 July, 2018

Features

  • Added support for processing android phones
  • Added support for processing within Acronis TIB files
  • Ability to view and assign user groups to a workflow profile

Fixed

  • Syslog messages can be configured to send over TCP
  • Defined more event codes for syslog messages
  • Enhanced ability to handle large nested directories
  • WebMC session history will display if a result is from a hash lookup

4.2.3

Release Date: 12 June, 2018

Features

  • Added LDAPS support for Remote AD servers
  • Ability to set the apikey during installation
  • Display file names of files in a large archive during processing

Fixed

  • Extended syslog support to multiple servers
  • Fixed login issue with users assigned to a workflow profile
  • Corrected browsing for files in nested directories with similar names
  • Improved the speed for copying files

4.2.2

Release Date: 21 May 2018

Features

  • Functionality to alert if a popup is open on the underlying system
  • Events can be configured to broadcast to a syslog server

Fixed

  • File browse window can handle large number of files in a directory
  • Fixed issue with querying users from a remote AD
  • Ensuring a session ID is always generated for reports
  • Updated Central Mgmt integration to further validate configuration settings
  • Added ability to view the MetaDefender Privacy Policy from the Management Console

4.2.1

Release Date: 16 April, 2018

Features

  • Ability to download files from Vault
  • Configure session and file history CSV export run automatically
  • Added support for Kingston DataTraveler 400 G2
  • Email session reports to the logged in Kiosk session user

Fixed

  • Modified font display with foreign languages
  • Fixed issue with Central Mgmt settings import
  • Enhanced various logging with more specific information

4.2.0

Release Date: 20 February, 2018

Features

  • Rebranded Kiosk
  • Ability to be managed by Central Management
  • Added support for Kanguru Defender Elite 300
  • Session and file history can be exported to CSV
  • Kiosk can be configured to allow file handling to run automatically

Fixed

  • Fixed issue with reporting wipe progress for large devices

  • Improved media handling

  • Added new configuration

    • allow users to skip entering passwords for McAfee drives
    • disable warning of network errors

  • Enhanced license activation

4.1.1

Release Date: 30 November, 2017

Features

  • None

Fixed

  • Fixed issue in uploading files to SFT accounts when authentication is done by a custom authentication module
  • Sanitized files are copied to temporary storage instead of original media
  • Fixed issue in creating a new language
  • Fixed issue where session finish time was reported incorrectly in Kiosk logs

4.1.0

Release Date: 26 October, 2017

Features

  • Support for additional models of encrypted USB drives

    • Ironkey S1000
    • Ironkey D300
    • Kingston DataTraveler Vault Privacy 3.0
    • Kingston DataTraveler 2000
    • Kingston DataTraveler 4000

  • Answers to user questions can be used in the path specified for post scan file handling

  • When copying blocked files, administrators have the option of only copying files that have been sanitized

Fixed

  • The Metadefender Kiosk Management Console now has a default password ('admin') after installation
  • Cancelling a scan will cancel scans in progress on the Metadefender Core server
  • Kiosk will retry scans that initially fail on the Metadefender Core server
  • Improvements in the Japanese language keyboard
  • Language keyboards can be disabled from the Kiosk UI

4.0.2

Release Date: 18 September, 2017

Features

  • Metadefender Kiosk can be configured to check for existing scan results before sending a file to Metadefender Core

Fixed

  • The Browse and Scan All options will not be displayed in the Kiosk UI if they are disabled
  • Media wipes are now logged as sessions
  • Media manifests are uploaded with files that are copied to a Metadefender SFT server
  • Vulnerability details are displayed if Metadefender Core has the Metadefender Vulnerability engine enabled

4.0.1

Release Date: 28 July, 2017

Features

  • Signed scan manifests can be written to processed media (requires Metadefender Core 4.8.0 or later)

Fixed

  • Improvements in uploading files to a Metadefender SFT server
  • Session scan logs are included in a configuration export

4.0.0

Release Date: 5 July, 2017

Features

  • New Kiosk user interface
  • Optional 'Disclaimer' Screen in Kiosk workflow
  • Support for user selected language

Fixed

  • Re-implementation of drive wipe functionality
  • Move to new licensing mechanism
  • 32-bit operating systems are no longer supported
  • Minimum required version of Metadefender Core is 4.7.2
  • Configuration can not be imported from versions prior to 4.0.0

3.4.6

Release Date: 25 July, 2017

Features

  • None

Fixed

  • Fixed issue where Kiosk sometimes didn't launch after system restart
  • Minor bug fixes

3.4.5

Release Date: 25 April, 2017

Features

  • Alert dialog shown to the user when a non-memory USB device is inserted
  • Devices can be limited to those whitelisted by device ID

Fixed

  • The only Metadefender Kiosk workflows included by default will be the 'Default' and 'Guest' workflows
  • Mechanism to retrieve device serial IDs has been improved

3.4.4

Release Date: 14 March, 2017

Features

  • None

Fixed

  • Metadefender Kiosk will now attempt to detect a second media if the first one detected fails
  • Error message shown when files can not be removed by Metadefender Kiosk

3.4.3

Release Date: 7 February, 2017

Features

  • Support for USB Flash Security encrypted drives
  • Option to whitelist files larger than a specified size
  • Allow administrator to disable 'Process All' option

Fixed

  • Addressed issue in using Kiosk over HTTPS
  • Better handling of scan results from Metadefender Core 4.x
  • System files on Bitlocker encrypted devices can optionally be excluded from scanning

3.4.2

Release Date: 13 December, 2016

Features

  • Metadefender Kiosk can now be configured to abort scans as soon as a blocked file is found
  • Multiple Metadefender Core servers can be defined for redundancy
  • Support for wiping encrypted USBs
  • Alert sound can be customized

Fixed

  • Better reporting of mismatched files that are found within archives
  • SMTP settings for emailed session reports are now configured globally
  • Estonian keyboard layout is now supported for the onscreen keyboard
  • Options for handling multiple partitions have been simplified to either block devices with multiple partitions or scan all available partitions

3.4.1

Release Date: 9 November, 2016

Features

  • None

Fixed

  • Kiosk user will now be prompted to confirm before destination media is wiped before files are copied to it

3.4.0

Release Date: 27 October, 2016

Features

  • Each Metadefender Kiosk workflow specifies a specific Metadefender Core workflow or rule to use
  • Files identified as potentially vulnerable by Metadefender Core's vulnerability engine are shown in the scan results
  • Metadefender Kiosk will now scan the boot sector of any media

Fixed

  • The Metadefender Kiosk session log page user interface has been updated
  • Potential security vulnerability with Ctrl-L key combination has been closed
  • Better handling of McAfee encrypted USB devices
  • Requires Metadefender Core 3.12.4 or later

3.3.6

Release Date: 30 September, 2016

Features

  • Built in user authentication now supports remote Active Directory authentication.
    • Note that for remote Active Directory authentication provided user credentials are not used when files are copied as a post action.

Fixed

  • Metadefender Kiosk will validate SSL certificates when using HTTPS to communicate to the Metadefender Core server. If Metadefender Core is using a self-signed certificate, this certificate must be installed on the Metadefender Kiosk machine, otherwise validation will fail.
  • The Metadefender Kiosk UI will reset after the scanned media has been removed when at the scan results page

3.3.5

Release Date: 1 September, 2016

Features

  • Encrypted drives can now be used as the "Copy To" destination
  • Drives that are being copied to can now be wiped before files are copied

Fixed

  • Server settings for e-mail notifications are now configured in Metadefender Kiosk instead of in Metadefender Core

3.3.4

Release Date: 8 July, 2016

Features

  • Compatible with Metadefender Core 4.4 and later versions
  • Support for Kanguru 2000 and 3000 encrypted USBs
  • More flexibility allowed in the destination directory when "Copy To" post action is enabled
  • Scan session log can be saved as a PDF

Fixed

  • High security workflow included by default in installation
  • Kiosk UI now scales to higher resolutions
  • Count of files sent to a Metadefender Secure File Transfer server added to Management Console dashboard

3.3.3

Release Date: 31 May, 2016

Features

  • Non-guest Metadefender Kiosk profiles can now upload to Metadefender SFT guest accounts

Fixed

  • Updated onscreen Japanese keyboard
  • Metadefender Kiosk can now be used with a Metadefender Core server that has an API key set
  • Fixed bug where files on read-only media that are sanitized were not getting copied as part of the file handling part of the workflow
  • Several hotkeys are now automatically disabled when the UI is running
  • Additional minor bug fixes

3.3.2

Release Date: 19 April, 2016

Features

  • Scan reports can now be sent by e-mail after the scanning session is complete
  • The file upload chunk size for uploading files to a Metadefender SFT server is now configurable.

Fixed

  • The sender e-mail address is no longer required when uploading files to a Metadefender SFT server
  • Additional strings have been added to the Kiosk UI and can be modified through the Management Console
  • The encryption method for passwords saved in the Metadefender Kiosk configuration has changed. Importing configuration from versions prior to Metadefender Kiosk 3.3.2 will not import passwords.

3.3.1

Release Date: 15 March, 2016

Features

  • None

Fixed

  • Better cancellation of a scan in progress
  • Fixed issue when browsing blank media
  • Correct detection of unencrypted Kanguru devices
  • Database and Windows events can be viewed through the Management Console

3.3.0

Release Date: 30 January, 2016

Features

  • The name of the product is now Metadefender Kiosk
  • Administrators have the option to restrict access to domain users when Windows authentication is enabled

Fixed

  • Fixed bug in importing saved configuration
  • IIS Express component has been upgraded to version 8.0

3.2.0

Release Date: 23 December, 2015

Features

  • Metadefender now uses Metascan workflows (Metascan versions 3.10.1 and later)
  • Custom authentication modules are supported
  • Windows 10 support

Fixed

  • None

3.1.0

Release Date: 31 October, 2015

Features

  • Metascan functionality can now be configured within the Metadefender Management Console. This is only supported for Metascan servers version 3.9.5 or later.
  • Support for floppy disks as the copy destination in post-actions

Fixed

  • Custom time periods can be set for the statistics displayed on the Metadefender dashboard

3.0.12

Release Date: 30 September, 2015

Features

  • Upload to Policy Patrol Secure File Transfer (Requires version 2.2 or later of SFT) is now available as a post action
  • The Metadefender Management Console has an updated look and feel, matching the Metascan Management Console

Fixed

  • The security and compatibility of the Metadefender Management Console has been improved by replacing the PHP component with JavaScript
  • Stability of the data sanitization post-action has been improved
  • Fixed issue where floppy disk drives on non-English operating systems were not being recognized
  • Fixed issue where in certain circumstances Metadefender might not start automatically upon system restart

3.0.11

Release Date: 31 August, 2015

Features

  • None

Fixed

  • Updated kiosk UI strings for non-English languages

  • Improved support for

    • Ironkey D250 encrypted USBs
    • Kanguru Elite Defender 30 USBs
    • Kingston encrypted USBs

  • If Windows authentication is enabled, non-local (i.e. domain) users are now required to specify their domain

3.0.10

Release Date: 30 July, 2015

Features

  • None

Fixed

  • Resolved issue where files would fail to copy to network locations when SHA-256 hash verification was enabled
  • Resolved issue in displaying large number of files in Metadefender's browse dialog
  • Support for file type conversion from image files has been removed. Conversion from PDF is now only supported to sanitized PDF. For customers that will be exporting Metadefender workflows that used this functionality OPSWAT recommends that these conversions are disabled before exporting.

3.0.9

Release Date: 30 June, 2015

Features

  • None

Fixed

  • Reduced the latency in loading workflow configuration when there are many user accounts on the associated active directory server
  • Resolved race condition where Metadefender occasionally did not start upon system startup when installed on Windows 8 or newer operating systems
  • Improved behavior when multiple instances of Metadefender are running on the same system

3.0.8

Release Date: 22 May, 2015

Features

  • Windows 8.1 and 2012 R2 are now supported
  • Buffalo RUF2-hsc-2gt Encrypted USBs are now supported
  • McAfee Complete Data Protection Encrypted USBs are now supported
  • EncryptDisc media is now supported
  • Kanguru Defender Elite 30 USB devices are now supported
  • Metadefender Idle Screen can be customized
  • German and Korean translations of the Metadefender kiosk UI

Fixed

  • Hashes of files are re-verified when the 'Copy To' post action command is used
  • Better handling of network failures when scanning with a remote Metascan server

3.0.7

Release Date: 22 December, 2014

Features

  • Scan logs can be saved to the media being scanned
  • Recent sessions now listed in the Metadefender Management Console logs page
  • Support for Buffalo SecureLock encrypted devices
  • Receipt can be configured to print automatically

Fixed

  • More details available in the scan result screen for files that failed to scan
  • Kiosk user can be alerted when Metadefender license is close to expiration
  • New HTML documentation available through the Management Console
  • Romaji input supported on Japanese keyboard
  • More robust support for Kingston DataTraveler encrypted USBs
  • Bitlocker encrypted drives are now supported on Windows 8.1
  • Other minor changes

3.0.6

Release Date: 4 November, 2014

Features

  • Support for Ironkey D250 encrypted USBs
  • Support for BitLocker (password) encrypted devices
  • Vietnamese and Japanese user interface available by default

Fixed

  • User account credentials used for post actions when Windows authentication is enabled
  • Better indication when potential threats are found
  • Additional scan result details included in text log file
  • Debug log package available for download in Management Console
  • Additional printout configuration options

3.0.5

Release Date: 1 August, 2014

Features

  • Added Support of KIOSK UI localization
  • Added predefined KIOSK UI Localization for Hebrew & Arabic
  • Added additional predefined profiles
  • More configuration for printouts

Fixed

  • Fixed error when scanning empty media
  • Improved accuracy of timestamps in logs
  • Improved error handling and logging for errors
  • Updated logs to include scan failure reason
  • Clearer notification when a threat is found
  • Add ability to set password in Metadefender Management Console
  • Various bug fixes

3.0.4

Release Date: 8 May, 2014

Features

  • Copy to user provided media as post-action
  • Username is available as a variable in post-actions when Windows login is enabled

Fixed

  • Improved archive handling
  • Improved physical keyboard support
  • Scan is aborted if connection with Metascan server is interrupted (when Metascan is on separate machine)
  • Improved handling when Metascan server is operating at maximum capacity
  • Fixed potential issue where Metadefender failed to launch due to latency of Windows desktop preparation
  • Better logging for interruptions during post processing
  • Minor bug fixes
  • UI improvements

3.0.3

Release Date: 8 November, 2013

Features

  • None

Fixed

  • Fixed print formatting issues

3.0.2

Release Date: 27 September, 2013

Features

  • Search for processing result by file upload
  • Ability to export processing logs
  • Allow search results to be bookmarked for later reference
  • Display more detailed progress during file enumeration
  • Improved Metadefender Management Console
  • Improved formatting for built-in kiosk printers

Fixed

  • Fixed bug that was preventing restoration of default and guest profiles
  • Prevent users from being added to more than one workflow profile

3.0.1

Release Date: 5 July, 2013

Features

  • User Authentication
  • Customizable User Profiles
  • Configurable User Questions
  • Filtering by File Type
  • Web-Based Metadefender Management Console
  • System Restore with Deep Freeze
  • File Type Conversions
  • Enhanced Post-Processing Options
  • New End User Workflow
  • Option to Restart After Each Session
  • Comprehensive Logging for all Processed Files
  • Support for Kingston encrypted USB drives
  • Handling USB with partially corrupted file system
Type to search, ESC to discard
Type to search, ESC to discard
Type to search, ESC to discard
Next to read:
Known Limitations
On This Page
Archived Release Notes4.6.84.6.74.6.64.6.54.6.44.6.34.6.24.6.14.5.84.5.74.5.64.5.54.5.44.5.34.5.24.5.14.5.04.4.124.4.114.4.104.4.94.4.84.4.74.4.64.4.54.4.44.4.34.4.24.4.14.4.04.3.114.3.104.3.94.3.84.3.74.3.64.3.54.3.44.3.34.3.24.3.14.3.04.2.154.2.144.2.134.2.124.2.114.2.104.2.94.2.84.2.74.2.6FeaturesFixed4.2.5FeaturesFixed4.2.4FeaturesFixed4.2.3FeaturesFixed4.2.2FeaturesFixed4.2.1FeaturesFixed4.2.0FeaturesFixed4.1.1FeaturesFixed4.1.0FeaturesFixed4.0.2FeaturesFixed4.0.1FeaturesFixed4.0.0FeaturesFixed3.4.6FeaturesFixed3.4.5FeaturesFixed3.4.4FeaturesFixed3.4.3FeaturesFixed3.4.2FeaturesFixed3.4.1FeaturesFixed3.4.0FeaturesFixed3.3.6FeaturesFixed3.3.5FeaturesFixed3.3.4FeaturesFixed3.3.3FeaturesFixed3.3.2FeaturesFixed3.3.1FeaturesFixed3.3.0FeaturesFixed3.2.0FeaturesFixed3.1.0FeaturesFixed3.0.12FeaturesFixed3.0.11FeaturesFixed3.0.10FeaturesFixed3.0.9FeaturesFixed3.0.8FeaturesFixed3.0.7FeaturesFixed3.0.6FeaturesFixed3.0.5FeaturesFixed3.0.4FeaturesFixed3.0.3FeaturesFixed3.0.2FeaturesFixed3.0.1Features