github kanidm/kanidm v1.7.3
on GitHub

13 days ago

2025-08-15 - Kanidm 1.7.3 Patch

  • Correctly handle IP address SAN's in certificate issuance for replication
  • Clearly describe some replication misconfiguration in warning messages.
  • Resolve unixd/tasks from dropping tasks that are queued (initial fix was incomplete)

2025-08-15 - Kanidm 1.7.2 Patch

  • Improve argon2id parameter search speed
  • Make it clearer why a unixd user can't login
  • Disable and enable of break-glass accounts
  • Resolve unixd/tasks from dropping tasks that are queued
  • Correct a defect in show replication cert which would wait indefinitely

Known Issues

  • Repeat calls to recover-account contains an edge case that causes the command to fail. You should call disable-account then recover-account in sequence if you see a failure during recover-account

2025-08-01 - Kanidm 1.7.1 Patch

  • Incorrect handling of SEC1 formatted ECDSA private keys prevented server startup
  • Update tracing libraries to allow publishing of crates

2025-08-01 - Kanidm 1.7.0

This is the latest stable release of the Kanidm Identity Management project. Every release is the combined effort of our
community and we appreciate their invaluable contributions, comments, questions, feedback and support.

You should review our support documentation as this may have important effects on your distribution or upgrades in
future.

Before upgrading you should review our upgrade documentation

1.7.0 Release Highlights

  • Darkmode UI colour and style improvements (#3593, #3660)
  • OpenSSL removal in favour of rust-cryptography and rustls (#3594, #3687, )
  • OAuth2 client IDs always process as lowercase (#3605)
  • Test for corrupt unicode in SSH keys (#3618)
  • Accept SSH keys with variable salt lengths (#3629)
  • Move unixd shadow/passwd handling into the tasks daemon (#3631)
  • Reload schema before db verify to prevent incorrect warnings (#3643)
  • Improve unixd and tasks daemon startup coupling (#3638)
  • Reduce unixd memory usage (#3651, #3645, #3754)
  • SCIM API implementation (#3535, #3700, #3725, #3741, #3748)
  • Fix parsing of passwd files with comments in them (#3673)
  • Reduce unixd logging verbosity (#3680)
  • Only allow server side password generation for service accounts (#3688)
  • Fix UI confusion when unix password validation fails (#3719, #3720)
  • Web UI for users to self manage RADIUS passwords (#3728)
Check out latest releases or
releases around kanidm/kanidm v1.7.3

Don't miss a new kanidm release

NewReleases is sending notifications on new releases.

Get notifications