Blue Prism 7.0.2: August 2022

Click this icon on the toolbar to view and download the full PDF version of the release notes.

About this release

The tables below summarize the components that relate directly to this Blue Prism Enterprise release.

Core components

The following components are included in the Blue Prism Enterprise installers:



This release requires the Blue Prism database to be this version. This is the first Blue Prism release to use this database version.

Browser extensions
(Chrome, Firefox, and Edge)

See Browser extensions

For the latest compatibility information, see the browser compatibility matrix in the Blue Prism online help.

Additional components

The following components are available with this Blue Prism release, but must be installed separately if they are required in your Blue Prism environment:

Login Agent


No functional updates have been made to the Blue Prism Login Agent since Blue Prism 6.7. The Login Agent version that is provided with this release of Blue Prism has the same functionality as the version provided with Blue Prism 6.7.

Data Gateways engine


The Data Gateways engine version 1.3 or 1.4 (recommended) must be installed to use Data Gateways with this version of Blue Prism.

Download the installer from the Blue Prism Portal via Product > Blue Prism Enterprise > Extras.

Blue Prism API


This release requires the Blue Prism API to be this version to enable the full functionality of the Control Room plugin in Blue Prism Hub 4.5. If you are using the Blue Prism API independently of the Control Room plugin, you can continue to use previous versions of the API, but won't be able to take advantage of the new features and capabilities in this new version.

Download the installer from the Blue Prism Portal via Product > Blue Prism Enterprise > Blue Prism 7.

Compatible Blue Prism Hub components and plugins

The following components are part of the Blue Prism Hub release, but are required to utilize specific Blue Prism functionality:

Authentication Server

4.3 > 4.5

This Blue Prism Enterprise release requires these versions of Authentication Server to be able to leverage the related new features included in this release of Blue Prism.

For more information, see the Authentication Server configuration guide.

Control Room plugin

4.3 > 4.5

The Control Room plugin must be this version to leverage the features in this Blue Prism release. The Control Room plugin is dependent on the Blue Prism API.

For more information, see the Control Room plugin guide.

Applying this patch release

To upgrade to this version, this patch release must be applied to all the following components throughout your Blue Prism environment for it to be operational:

Interactive clients Runtime resources Application servers




Please review the upgrade notices for more details and before upgrading to this release.

Known issues

A list of any prominent issues with this release is maintained in the knowledge base – click here for more information.

Secure development policy

SS&C Blue Prism’s secure development process is a market-leading, embedded security culture, focused on delivering security excellence through four key principles:

  • Education – Providing up-to-date knowledge, information, and training to the development team.
  • Evaluation – Regular reviews of our products using industry standard frameworks and security tools.
  • Elimination – Remove potential threats through the evaluation of standards, compliance, and performance.
  • Evolution – Continued improvement of our security program, ensuring alignment with our product technologies and by reacting effectively to new and emerging threats.

SS&C Blue Prism secure development is based on OWASP ASVS, ISO 27034 and GDPR Article 25 standards and practices. For more information, see SS&C Blue Prism's comprehensive secure development process.

Blue Prism core components

The following enhancements, fixes, and minor improvements have been added to the Blue Prism core functionality in version 7.0.2:

Description of change


The following enhancements have been made to the Blue Prism connection configuration functionality:

  • If using the following connection modes with a Blue Prism Server connection, a Service Principal Name (SPN) must be configured against the Active Directory account under which each Blue Prism Server service instance is running:
    • WCF: SOAP with Message Encryption & Windows Authentication
    • WCF: SOAP with Transport Encryption & Windows Authentication
    • .NET Remoting Secure
  • This is because when a Blue Prism interactive client or a runtime resource connects to an application server using one of the connection modes above, the Microsoft Negotiate Security Package is used to select the best Security Support Provider (SSP) to authenticate the connection. The internal code of the Blue Prism interactive client provides the expected SPN to the Microsoft Negotiation Security Package, which prompts Microsoft Negotiation to select the Kerberos SSP over New Technology LAN Manager (NTLM) SSP, provided the SPN is present in Active Directory.
  • This configuration applies to all Blue Prism environments, however, if the Active Directory account under which the BP Server instances are running resides in a different domain to the Active Directory account used for the Blue Prism interactive client and runtime resource, the following settings must be configured in Automate C:
    • /setkerberosrealm – For example, /setkerberosrealm must be configured for each BP Server connection in the interactive client where the user's Kerberos realm is different to that of the account configured to run BP Server. The Kerberos realm is usually the same as the domain name, however, please check with your IT team for the correct value.
    • /forcentlm <flag> – For example, /forcentlm true. This forces Microsoft Negotiate Security Package to select New Technology LAN Manager (NTLM) as the Security Support Provider (SSP) for the last used or specified connection (using the /dbconname switch) when authenticating the Blue Prism server connection. This option is provided so that NTLM can be used when Kerberos is unavailable or not configured.

Please consult with your security team before enabling this option as NTLM is considered a less secure protocol. For more information, see the Blue Prism Enterprise installation guide.



Various security improvements around server permissions and communication have been made in this release.

The following Common Vulnerabilities and Exposures (CVEs) have been addressed:

  • CVE-2022-36115
  • CVE-2022-36116
  • CVE-2022-36117
  • CVE-2022-36118
  • CVE-2022-36119
  • CVE-2022-36120
  • CVE-2022-36121
  • CVE-2022-36662

For details of these CVEs, see Security Vulnerabilities August 2022 on the customer portal.


An issue has been fixed where, when working with application elements using the Match Index attribute and the value of this index was greater than 0, the Java changes introduced in 6.10.3 by BP-5099 could cause intermittent crashes of Java applications that were automated using the Java Access Bridge spy mode.


When executing a process against a 64-bit Java application, an error triggering the message Arithmetic operation resulted in an overflow no longer occurs when automating data in Java tables using the Get All Items action. This has been fixed by updating the conversion mechanism so long values are converted to integer values.


Browser extensions

The table below shows when each Blue Prism extension, compatible with this release was introduced and the browser version against which they were evaluated. See and the browser compatibility matrix for the latest browser versions evaluated.

Browser Blue Prism extension versions



Edge Chromium