What's New in EFT?

Below is a high-level summary of changes in each recent versions of EFT, with links to relevant help topics. For a detailed log of changes and fixes, refer to the release notes in the Client Success Portal.

NOTE: If you don't have an account for the Client Success Portal, create an account using the name, email address, and serial number registered for your purchase.

v8.3.2

New Features

EFT Administration

Added support for multiple SSH host keys per site.
Added support for Fortra's Threat Brain integration.
Added support to override MFA policies for Web Admin and REST API.

REST API

Added support to refresh user database via REST API.

Web Admin Client (WAC)

Added support to create EFT administrators via Web Admin.
Added MFA (2FA) support in Web Admin.
Added Fortra's Threat Brain widget in the Web Admin.
Added support to display user statistics.
Added support to change an EFT admin password via Web Admin.
Added support to view all EFT administrators via Web Admin.

Workspaces

Added support to change workspace ownership

Enhancements

Enabled Enforce strong passwords by default on new installations (Enforcing Complex Passwords).
Enabled Allow users to reset their passwords and “Force new users to change their first-time password… by default (Allowing or Forcing Password Reset).
Enabled Prohibit reuse of previous X passwords by default (Prohibiting Password Reuse).
- Value is now set to 99 passwords by default.
Set the default Enable option to e-mail users their login credentials to “e-mail the username and password in separate emails” by default (Emailing Users' Login Credentials).
Enabled Disable account after X days of inactivity by default (Deleting or Disabling Inactive User Accounts).
PCI configurations will now have the default options enabled.
- Enabled Disable account after X days of inactivity by default (Deleting or Disabling Inactive User Accounts).
- Set the default Enable option to e-mail users their login credentials to “e-mail the username and password in separate emails” by default (Emailing Users' Login Credentials).
Updated secure data at rest configuration.
Updated Automate to v25.1.2.

Administration

Enabled various user passwords security settings by default (does not impact upgrades).
Enabled Deny for remote administration by default and allow only local access (does not impact upgrades).
Added support to modify the email subject line via EFT's Email Templates.

ARM

Added support to include the SSH Fingerprint for incoming connections.
Added a new Advanced Property (AP) to limit the amount of SQL file imports to the database, ARMImportSpeed.
Improved database optimization requests for ActionGUID in the tlb_Actions table.
Updated log4net library used in EFT's DBUtility tool to v3.2.0.

Automate Workflow Module (AWM)

Updated Automate Desktop to v2025 (25.1.2).
Improved Automate workflow (AML) conversions to v2025.
Removed DotNetZip library usage in Automate Desktop v2025.
Removed the ability to check for Automate updates.
Updated MimeKit library to v4.14.0.
Updated System.Text.Json library to v8.0.10.
Updated Microsoft.Identity.Client library to v4.81.0.
Updated BouncyCastle library to v2.6.2.

Context Variables

Added new context variables for Site Root path.

Cloud Connectors

Updated AWS SDK library to v1.11.722.
Updated Google Cloud SDK (Abseil) to v2.40.0.

Connection Profiles

Updated the AWS Region list.

Installer

Added a more descriptive message to the local EFT configuration data wizard screen in an HA Active-Active cluster setup.

Logging

Added support to include failing Automate Workflow conversion including the name of the workflow AML and line-item number in the EFT logger.

OpenSSL

Updated non-FIPS OpenSSL library to v3.5.0.
Updated FIPS OpenSSL library to v3.1.2.
FIPS 140-3 compliant support for SSL.

OpenSSH

Added support to prioritize SHA2-512 over SHA2-256 via an advanced property, SFTP2_PrioritizeSha512Over256, for outbound traffic.
FIPS 140-3 compliant support for SSH.
EFT administrators will now get prompted when using weak keys such as RSA 1024 while in FIPS mode.

REST API

Added support for EFT admin role/permissions details via GET request in REST API.
Updated GET request for server metrics endpoint to include Threat Brain autoban count.
Updated GET request for site metrics endpoint to include Threat Brain autoban count.
Updated GET request for site metrics endpoint to include Threat Brain status.
Updated GET request for siteID metrics endpoint to include Threat Brain autoban count.
Updated v1/authentication endpoint to support MFA.

Secure Data At Rest

Improved secure data at rest configurations.

Copyright © Fortra, LLC and its group of companies.
All trademarks and registered trademarks are the property of their respective owners.
8.3.2 | 202603301230 | March 2026