What's New in EFT?

Below is a high-level summary of changes in each recent versions of EFT, with links to relevant help topics. For a detailed log of changes and fixes, refer to the release notes in the Client Success Portal.

NOTE: If you don't have an account for the Client Success Portal, create an account using the name, email address, and serial number registered for your purchase.

v8.3.0

New Features

    Administration

    • Added ability to disable an administrator user after a period of inactivity.

    • Added MFA to the EFT administrator accounts (PCI DSS 8.4.2).

    • Increased EFT Admin password length; Passwords can be a minimum of 12 characters, but default to 15 characters to meet regulatory compliance standards. (PCI DSS 8.3.6).

    • Added the ability to configure the App Data directory in the EFT installer.

    • Added changes to folder encryption, data at rest.

    ARM

    • Updated OLE SQL Driver in EFT.

    • Added new tables to ARM schema: tbl_Actions and tbl_ClientOperations. Refer to Knowledgebase article #11031 for details of ARM schema changes.

    Advanced Workflow Module

    • Advanced property GSAWEMaximumQueuedTasks was missing the second m and has been corrected. Be sure to update your advancedproperties.json file if you use this AP in v8.3 and later.

    High Availability

    • Changed default MSMQ to Unicast (msmq-iterative) (Advanced Properties "ClusterCoherenceQueueMsmqType").

      • Applies only to new installations. Upon upgrade, EFT will honor the previously configured value.

    PGP

    • Updated PGP library to 2024.

    REST API

    • Added REST API support to DMZ Gateway.

    Web Admin Client (WAC), WTC, & Workspaces

    • Added ability to set default expiration option for portals

    • Added text displaying Workspace expiration in WTC

    • Added support for Content Security Policy level-3 "strict-dynamic" to mitigate cross-site scripting (Refer to Knowlegebase article 11435 - Specify CSP).

    • Added the ability to identify EFT’s Site authentication

Enhancements

  • Updated OpenSSL library to v 3.4.1 for Non-FIPS.

  • Updated OpenSSH library to v9.8.

  • Updated Generate Support Data to include EFT’s Advanced Properties json file.

  • Updated compression library.

  • Updated the EFT installer to include SQL Express 2022.

  • Updated Automate to v24.2.50.1.

    Administration

    • Added ability to disable an admin user after a period of inactivity.

    • Updated administrator password security-policy defaults, such as enable anti-DOS feature, complex passwords, password history setting (PCI DSS 8.3.7), password expiration.

    • Updated User Password Security defaults.

    • Updated EFT logger file to enable log4cplus.rootLogger=INFO (syslog).

    • Updated Azure Storage Client library.

    • Updated the registration status of subscription keys in Help > About based on the invoice end date for new activations.

    • Enabled Expire passwords for administrators by default (PCI DSS 8.3.10.1).

      • Applies only to new installations. Upon upgrade, EFT will honor the previously configured value.

    • Added support for Subscription licensing registration via our Manual Registration process.

    • Added a new column under the Transfers as Client in the UI to include EFT Event Rule names.

    • Removed the bundled help file (chm) for EFT; help now requires internet access.

    ARM

    • Updated OLE SQL Driver in EFT.

    Web Admin, WTC, & Workspaces

    • Updated WTC Content Security Policy (CSP) Level 3 'strict-dynamic' to mitigate cross-site scripting.

    • Updated Angular to v19.

    • Updated anti-CSRF in EFT based on OWASP’s best practices.

    • Replaced Brandon Grotesque font with Google’s Roboto.