PingAuthorize 10.1.0.5 (February 2026)

Improved PAZ-20713

We’ve added a new Policy Decision Service configuration property, use-microseconds-timestamp, which allows you to enforce microsecond-precision timestamps for governance-engine API responses. This option improves compatibility with clients that expect legacy timestamp formats.

Learn more in JSON PDP API response format.

Fixed DS-49269, DS-49270

We fixed an issue that could cause the server to select an expired certificate when performing TLS negotiation with an external server that has a key manager provider and requests a client certificate chain.

The server now presents an expired certificate only if the key store doesn’t include any certificate chains with currently valid certificates.

We also added the ssl-cert-nickname property to the external server configuration, which allows you to control which client certificate chain the server presents to that external server. If this property isn’t configured, the server attempts to select an appropriate certificate chain automatically.

Fixed DS-48553

Running remove-defunct-server --performLocalCleanup in interactive mode no longer attempts to establish a connection to another live server in the topology.