netwrix/pingcastle 3.4.2.66

PingCastle 3.4.2.66

on GitHub

Release Date: 2025-10-06
End of support: 2026-04-30

Release Notes

ESC2 Check Updates

• Privileged Mode: Added support to validate enrollment permissions on the Certification Authority.
• Clearer Messaging: Risk identification for ESC2 is now explicit.
• Expanded Guidance: Improved technical explanations and remediation details.

Bug Fixes

• Exit Option: Fixed behavior to return one level up instead of terminating the program.
• SMB2SignatureNotEnabled: Corrected handling of invalid SMB2_NegotiateResponse structures.
• LAPS Charts: Resolved incorrect data display in pie charts.
• Non-Domain Runs: Fixed issues running PingCastle on non-domain-joined machines.
• Help Output: Added missing --services collection option to the help text.

Entra ID Terminology

• Standardized terminology to align with Microsoft Entra ID, replacing legacy Azure AD terms.

DNS Zone Update Improvements

• Added DistinguishedName property to HealthcheckDnsZones.
• LDAP collection now includes DNs for (objectClass=dnsZone) objects.
• Filters CNF and replication artifacts.
• AddRawDetail outputs include DN and partition context for better precision.