2020PS7
Released on June 17, 2020.
Download Version 2020PS7
Links
Feature Overview Version 2020PS7
ScriptRunner Server
- Now supporting PowerShell 7
- New Framework: .NET 4.7.2
- Optional PowerShell Core Host: (pwsh/SRXPSCoreHost.exe)
- New Credential for SSH Keyfiles
- Neu Option for target configuration: SSH connection
- Target chains: for implementing admin jump hosts (which can be additionally secured with JEA) – and much more.
- Predefined target connections
- to Exchange Online with EXO V2 (ExchangeOnlineManagement Module)
- to teams with MicrosoftTeams
- custom cloud service connections with custom PowerShell connect and disconnect code
- New Script parameters
- [PSCustomObject]: for transferring PSCustomObject objects from a Query result to a Script
- [Hashtable]: for transferring Hashtable objects from a Query result to a script
- [System.Management.Automation.Runspaces.PSSession]: to build a ready-to-use PSSession to a target instance
- [Microsoft.Management.Infrastructure.CimSession]: to build a ready-to-use CimSession to a target instance
- Improved security for [PSCredential] parameters: can no longer be selected via the execution wizard, but must be defined a priori via the Action configuration
- New API for Microsoft Flow and Azure Logic Apps: ScriptRunner/api2/StartAction API for Microsoft Flow and Azure Logic Apps and option to export the corresponding OpenAPI files (aka Swagger) from the Admin app
- Experimental features: Hyper-V, container and CimSession target connections
ScriptRunner Apps
- Admin App
- Actions: The Action wizard ignores LIB-tagged scripts because they are not intended for Actions anyway
- Action configuration: Specification of multiple targets for an Action as well as the possibility for an executing user (also for Delegate App users) to interactively select the desired target for execution from this list.
ISE Add-On
- New -force parameter to skip version check
- User AppData path shortened for temporary local files
2019 R3
Released on March 3, 2020.
Download Version 2019R3
Links
Features Overview Version 2019R3
ScriptRunner Server
- ScriptRunner Service 64-bit
- ScriptRunner Service is now a true 64-bit executable, and installs to C:Program FilesScriptRunner
- Service registry settings move from HKLM/Software/WOW6432Node/AppSphere to HKLM/Software/ScriptRunner
- Service data in ProgramData moves from AppSphereScriptRunnerService to ScriptRunnerService
- Service name has been simplified to “ScriptRunnerService”
- ScriptRunner Apps install to C:Program FilesScriptRunner
- Support for Windows Server 2019
- Windows Server 2019 with desktop experience
- Windows Server 2019 Core with ServerCore.AppCompatibility Feature Set installed
- Support for Active-Passive Cluster: ScriptRunner can be installed in a Windows active-passive cluster to increase reliability.
- ScriptRunnerSettings PowerShell Module
- New option for Get-AsrLicensedUser cmdlt: -UserType ‘Self-Service Users’
- Enable-AsrLicensedUser cmdlet: re-enables a disabled licensed user with a license key
- Test-AsrUri cmdlet: checks the availability of the ScriptRunner web service
- EndpointsGet-AsrWinEvent cmdlet: reads the ScriptRunner entries from the Windows Event Log
- ScriptRunnerSettings PowerShell module is now also supported with Get-Help
- New target: Azure Az
- New Scheduler options:
- Support for nth day of the month
- Multiple execution times
- Excluded hours
- Parameter validation: a PowerShell [ValidatePattern()] parameter attribute inside a PARAM block will now also trigger a respective regex pre-validation in the apps.
- Additional input validations:
- Regular expressions
- Multiline text input
- Hidden text
- Secure string type
- Library script selection in scripted queries.
- SQL Report Database schema update
- Execution reports have been extended to reflect the new admin team info
- Every ScriptRunner host now has an instance name, so several instances can put their reports into a single report database.
- New view of policy elements
- PRIVATE USE
- PUBLIC USE
- Extended role model
- New role “Server Administrator”
- New role “Main Administrator”
- New role “Administrator” (team or client)
- New role “Service Desk User”
- New role “Self-Service End User”
- HTML reports: ScriptRunner PowerShell host supports HTML results via $SRXEnv.ResultHtml variable. The HTML reports can be retrieved from the ScriptRunner Desktop and Web Apps
Automation Connectors
- Web Service Connector:
- New option for using the WebService Connector with Basic Auth
- New option for using Micro Services/Kubernetes as a calling source system
- New application scenario: System/Application Backend
- New application scenario: User Application / Computers directly
- CyberArk Connector: Use LogonDomainUserName or UserName@Address as username in ScriptRunner if the respective fields are set in CyberArk.
- Thycotic Connector: Use -WebInstance ‘/’ for an empty URI segment (instead of the default ‘SecretServer’).
ScriptRunner Apps
- New App: Self-Service App:
- Simplified Desktop and Web App for end users
- Web service connector for self-service groups can allow unrestricted request source IPs.
- Admin App improvements:
- Global display filter: effective on all main tables
- Local display filter: full text search
- Dashboard filters extended to allow multiple filters selected and filter negation.
- New PowerShell ISE Add-on
2018 R3
Released on September 20, 2018.
Download Version 2018R3
Links
Features Overview Version 2019R3
ScriptRunner Server
- Queries
- Interactive input queries
- Active Directory queries
- Auto-run queries
- Credentials in script queries
- HTTPS
- The ScriptRunner Service can now be configured for HTTPS.
- Side-by-side HTTPS support: second IP port, for HTTPS and/or AD FS support, facilitating migration to HTTPS (Set-AsrSTSOptions).
- Implicit PowerShell Remoting
- Target configuration supports implicit PowerShell remoting, by importing commands from the target into the local session (c.f. Import-PSSession).
- Actions can be configured to selectively import specific modules or cmdlets (with *).
- Azure AD 2.0 support in Office 365: supporting Office 365 service endpoints for Directory, Exchange Online, SharePoint Online and Skype4Business Online.
- Enhanced Security settings:
- available in setup
- added to Set-ASRUri PowerShell cmdlet
- CallASRWebSvcConnector.ps1 DEMO script: improved to cope with multi-target execution and with non-ASCII values.
- Get-ASRLicense cmdlet: now has an -AsObject switch parameter to return the current license status info as an easy to evaluate hashmap object.
- Extended handling of scheduled Action execution to prevent flooding execution resources
- Powershell execution timeout: controls the abort for longer running scripts, e.g. reporting scripts, if they threaten to run into an endless loop.
- Advanced execution options for Actions
- local execution modes:
- Thread impersonation mode
- Simple RunAs process mode
- Local WSMAN process mode
- Processing options for container target systems:
- Parallel execution on all target systems in the container
- Sequential execution on all target systems of the container, one after the other
- Random selection of a target system from the container with round-robin
- Selection of a target system as long as it can be reached, otherwise change to another one
- Synchronization of script processing
- New target: Azure Resource Manager (AzureRM).
- local execution modes:
- Library for function scripts organize related PowerShell code in single script files, as a collection of functions
- Support for Edge Browser
Automation Connectors
- Password Server Connector for retrieving credentials from a password server. Supports the following:
- Pleasant Password Server (APIv4)
- Thycotic Secret Server
- CyberArk Password Vault (AIM Central Credential Provider API)
- Web Service Connector: Scripts can now provide structured result data by writing a JSON string to $SRXEnv.ResultObjectJSON.
- SQL Report/Audit Database: Exporting the execution reports is now possible with an impersonated AD account, in addition to explicit SQL user access and Windows Integrated access using the ScriptRunner host machine account.
- Email inbound connector:
- Update to MailKit 1.20.0. Note that -UseTLS may now be required for SMTP login
- Test-ASREmailNotificationConnector cmdlet has been extended to send a test email, and to log more information on error
- Now using .NET SMTP client.
ScriptRunner Apps
- Live-output in script execution report: shows increasing script reports while executing
- New Data type:
- [DateTime], via date picker
- [SecureString] or [Parameter(HelpMessage=”ASRDisplay(Password)”)], for password mode
- Option for multi-line text input with [Parameter(HelpMessage=”ASRDisplay(Multiline)”)]
- Auto-show interactive query field for larger query results
- Re-load the last Action input values, for repeated execution of an Action
- Admin App
- New Action list view: sorted by next schedule
- Multiple selection of entries from a (Query or ValidateSet) dropdown, using the CTRL key
- Basic ScriptRunner settings have been moved to a new settings page (main navigation > gear-wheel entry “Settings”.)
- To clarify the use cases for authorization and connectors, the menu nodes have been renamed to “Delegation” and “Automation”. Connectors that did not match the “Automation” idea have been moved to the new settings page.
- New Action details view, showing the whole tree of elements that are used for an Action. Editing and running the Action, and even editing used elements, is possible directly from the new view
- Table tag filters in element tables have been replaced by a global tag filter, allowing focussing views on a certain topic (represented by the specified tags).
- Script wizard now shows the actions and queries that use this script
- Wizards now have an extra “Used by” card, to e.g. answer “where do I use these credentials?”
- Script referencing errors now propagate from the script to the Action and query table, wherever the respective script is in use
- Delegate App
- Customization options for UI
- New Action list view
- Allows splitting long parameter lists to multiple pages
Prior ScriptRunner versions
For information on older ScriptRunner versions please contact ScriptRunner Support.