Intellij Idea License Server

admin

Skip to end of metadataGo to start of metadata

My goal is to avoid manual configuration of the license server: Help Register IntelliJ IDEA License Activation Dialog is opened License server. All recent versions of JetBrains desktop software allow using JetBrains Account credentials as a way of providing licensing information. Simply select JetBrains Account as the licensing option and specify your JetBrains Account credentials. To see all the JetBrains products which are licensed to you, log into your JetBrains Account, and click. Help Register IntelliJ IDEA License Activation Dialog is opened License server JetBrains Products are paid. There are some free options for students but need to.edu verification. However, if you use Floating License Server, a per-machine license model is applied. When a user runs JetBrains Toolbox products concurrently, for example, on Windows and macOS, it requires multiple licenses.

Note: This documentation is for the older license server implementation, which is now deprecated.

The information about the current license server implementation is available here

About JetBrains License Server

JetBrains License Server is a web application that enables license administration across a single network. The Server issues and revokes license tickets to/from network clients based on properties of license keys that are provided by JetBrains after purchase, and allows a customer to use a product concurrently by the number of users corresponding with the number of per-user license keys run by License Server.

License Server serves as a central point for distribution of licenses among multiple users and client machines in a network environment. It supports the following JetBrains products:

  • IntelliJ IDEA 7.0 or higher (only Commercial licenses). (A License Server-compatible build of IntelliJ IDEA 6.0 is available upon request.)
  • ReSharper 3.1 or higher (only Commercial licenses).
  • ReSharper Cpp 1.0 or higher
  • dotTrace 5.5 or higher (only Commercial licenses). (Floating licenses are supported starting from dotTrace 3.1).
  • dotMemory 4.0 or higher (only Commercial licenses).
  • dotCover 1.0 or higher.
  • RubyMine 1.0 or higher.
  • PyCharm 1.0 or higher.
  • WebStorm 1.0 or higher
  • PhpStorm 1.0 or higher
  • AppCode 1.0 or higher

  • CLion 1.0 or higher

    Icon

    You can have earlier versions of these products in your network, but you can't manage them using License Server.

System Requirements

  • Java SE Runtime Environment (JRE)/Java SE Development Kit (JDK) 6 or higher installed in any of the following operating systems:
    • Windowsยฎ (2000, NT 4.0 or higher, XP or Win7).
    • Linux/UNIX-based OS.
    • Macintosh OSXโ„ข.
  • Apache Tomcat 6.0 or higher. Warning: Tomcat version 8.0.17 is broken, so the license server won't run on this particular Tomcat build.
  • Mozilla Firefox 2.0+, Internet Explorer 7.0+, Safari 3.0+ or Google Chrome for accessing the License Server control panel.

License Server comes with embedded Apache Derby database. However, you can configure License Server to work with an external database (MySQL or Sybase ASE.) See Using External Database for guidelines.

Download License Server

Note:

With the launch of JetBrains Toolbox the license server was completely rewritten.

Information about the new implementation can be found here

Documentation

  • License Server User Guide (recently updated: includes guidelines on developing custom verification plug-ins for License Server)

Changes

402

Minor fixes

392

ReSharper C++ support

385

Tomcat 8 compatibility fixes; More reliable handling of concurrent license data access

380

CLion support; dotTrace: Support for subscription-based licenses; dotTrace 5 licenses issued after 1/11/2014 assumed to have subscription

374

Minor fixes for ReSharper licenses.

372

Automatic ticket usage report generation and mailing to server administrator. Monthly and quarterly reports are supported.

355

dotTrace license handling updated, 'Email white list' feature fixes, server log files default location is now in logs//jetbrains-license-server directory; customizable server log files location

344

'Email white list' feature for restricting addresses to which permanent ticket activation code can be sent

338

Supporting additional SMTP-server settings (port, login, password, isSSL)

332

When no free tickets left, allow to convert already obtained floating ticket into permanent one (only if other clients do not hold this same ticket)

330

Fixed 'version' column rendering for 'Issued Tickets' table for tickets that correspond to subscription licenses

329

Prefer exact edition among licenses with subscription

328

Subscription support in .Net products

314

license types support for 'true-up' licenses.

313

Supported opensource and academic licenses for IntelliJ IDEA based products; fixed too strict parameter validation for the license requests from older builds of supported producs

309

Supported subscription licenses for IntelliJ IDEA based products

294

Ability to clear all licenses for particular product with a single click

293

Corrected handling of OptimisticLock exceptions; Before issuing a permanent ticket to a client, revoke all tickets already issued to this client

290

Added support for dotMemory profiler; Additional heuristic for DNS suffixes detection

288

Fixed DB-level deadlock issue between concurrent transactions

286

Show ticket's edition in 'Floating Tickets' page

285

Fix date decoding for dotNet products subscription licenses

284

Fixed NPE in ticket calculation procedure

282

AppCode product supported

269

Subscription licenses for dotCover supported; bundled Tomcat version upgraded to version 6.0.33; added 64-bit Tomcat distribution

260

Fixed bug in Java API: two connections were opened by a client connection to the server

257

Fixed 'multiple licenses issued for the same user' problem in environments where older and newer versions of products and licenses co-exist in the same LS instance

253

Eliminated dependency on Sun/Oracle-specific libraries that may be missing from alternative JDKs (e.g. IBM JSDK)

251

Fixed license validation problem: some 'client' licenses were treated as 'server'-type licenses

250

Key column migration fixes for Sybase ASE database

247

Enlarge license key column

245

Add support for dotCover and PyCharm

232

Bugfixes (dotTrace license compatibility)

231

Add WebStorm and PhpStorm plugins

216

Fix RubyMine (and subscription-based licenses) support

205

Fix problem with obfuscating

202

Custom authorization extension point added. See Extending License Server to Use Custom Verification for details.

190

RubyMine support

183

Bug fixes (ticket generation)

181

Bug fixes (IE7 compatibility) and ReSharper 3.0 license check

177

Bug fixes and ReSharper 4.0 support

173

Bug fixes and ReSharper 4.0 support

168

Ticket history support

160

Ability to configure 'from' address

159

Displaying build number in page footer

154

License Server is compiled with JDK 1.5

148

ReSharper True-up keys support

147

Sybase DB support

146

Corrected smtp server name validation. DB schema improvements.

144

Critical db bug fixes

143

Added IE 7 compatibility

142

Corrected README text.

140

Fixed license page reload after adding new key. 'Delete' license key functionality.

134

MySQL support.

129

Documentation included.

CVSS Meta Temp ScoreCurrent Exploit Price (โ‰ˆ)CTI Interest Score
7.4$0-$5k0.09

A vulnerability classified as problematic was found in JetBrains IntelliJ IDEA. Affected by this vulnerability is an unknown code block of the component License Server. The manipulation with an unknown input leads to a weak authentication vulnerability. The CWE definition for the vulnerability is CWE-290. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:

In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases.

The weakness was presented 04/22/2020 (Website). It is possible to read the advisory at blog.jetbrains.com. This vulnerability is known as CVE-2020-11690 since 04/10/2020. The exploitation appears to be difficult. The attack can be launched remotely. The exploitation doesn't need any form of authentication. The technical details are unknown and an exploit is not publicly available.

Upgrading to version 2020.1 eliminates this vulnerability.

See 154233, 154238, 154239 and 154240 for similar entries.

Product

Vendor

Name

CPE 2.3

CPE 2.2

CVSSv3

VulDB Meta Base Score: 7.7
VulDB Meta Temp Score: 7.4
VulDB Base Score: 5.6
VulDB Temp Score: 5.4
VulDB Vector: ๐Ÿ”Intellij Idea License Server
VulDB Reliability: ๐Ÿ”
NVD Base Score: 9.8
NVD Vector: ๐Ÿ”

CVSSv2

AVACAuCIA
๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”
๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”
๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”๐Ÿ”
VectorComplexityAuthenticationConfidentialityIntegrityAvailability
unlockunlockunlockunlockunlockunlock
unlockunlockunlockunlockunlockunlock
unlockunlockunlockunlockunlockunlock

VulDB Base Score: ๐Ÿ”
VulDB Temp Score: ๐Ÿ”
VulDB Reliability: ๐Ÿ”
NVD Base Score: Intellij Idea License Server๐Ÿ”

Exploiting

Class: Weak authentication
CWE: CWE-290
ATT&CK: Unknown
Local: No
Remote: Yes
Availability: ๐Ÿ”
Status: Not defined
Price Prediction: ๐Ÿ”
Current Price Estimation: ๐Ÿ”

0-Dayunlockunlockunlockunlock
Todayunlockunlockunlockunlock

Threat Intelligence

Interest: ๐Ÿ”
Active Actors: ๐Ÿ”
Active APT Groups: ๐Ÿ”

Countermeasures

Recommended: Upgrade
Status: ๐Ÿ”
0-Day Time: ๐Ÿ”
Upgrade: IntelliJ IDEA 2020.1

Timeline

04/10/2020๐Ÿ”
04/22/2020+12 days

Intellij Idea Free License Server

๐Ÿ”
04/23/2020+1 days๐Ÿ”
10/11/2020+171 days๐Ÿ”

Sources

Advisory: blog.jetbrains.com
Status: Not defined
Confirmation: ๐Ÿ”
CVE: CVE-2020-11690 (๐Ÿ”)
See also: ๐Ÿ”

Entry

Created: 04/23/2020 10:30 AM

Intellij Idea License Server


Updated: 10/11/2020 05:49 PM
Changes: (1) advisory_confirm_url
Complete: ๐Ÿ”

Intellij Idea License Server Key


Intellij Idea License Server Crack

Check our Alexa App!