Endpoint Privilege Management for Mac 24.1 Release Notes

February 13, 2024

Requirements:

  • Trellix (formerly McAfee) Agent (required if you are installing the Privilege Management client with Trellix).

New Features and Enhancements:

  • Introduced improved performance for Endpoint Privilege Management for Mac by caching repeated user actions and those actions will create audit events for all events cached. This has been iterated on throughout 2023 and from 24.1 release is enabled for all now by default.
  • Removed the functionality to Run with Privilege Management for the macOS application Console.app. The functionality has been removed due to Launch constraints introduced by Apple preventing our ability to launch the Console.app on behalf of the user.

Issues Resolved:

  • Resolved an issue when using QuickStart Policy for Mac with BI would create events on disk for EPM (SaaS) when not registered to EPM (SaaS).
  • Resolved an issue where installing or removing applications with Endpoint Privilege Management for Mac would incorrectly display an admin prompt.
  • Resolved an issue where messages parameters were not correctly showing in sudo messages.
  • Resolved an issue where the Information Tip text was not correctly reflecting the policy configuration in sudo messages.
  • Resolved an issue where the BeyondInsight Adapter could incorrectly use an expired certificate if the certificate shared the common name with a valid certificate.
  • Resolved an issue which caused the Rapid Deployment Tool to prevent the control of application installs with Drag and Drop functionality.
  • Resolved an issue with the macOS Response Generator.app which would cause the response code to be different to the response code generated by the Windows equivalent Response Generator.
  • Resolved an issue where the Reason text in messages was not correctly reflected in messages for Endpoint Privilege Management for Mac.
  • Resolved an issue where calling an Endpoint Security command could cause the Endpoint Privilege Management for Mac System Extension to fail. This would be noticeable when updating the policy applied to an endpoint.
  • Resolved an issue where passive events would not generate the Rule name field in BeyondInsight.

Known Issues:

Using Run with Privilege Management for the Console.app in macOS will not work. This is due to changes with macOS which we’ve raised with Apple with a Feedback assistant ticket FB9739423. After investigation, we have deprecated this feature due to restrictions in macOS architecture. We are investigating potential solutions. See New Features and Enhancements earlier in this release notes.

Compatibility:

  • Endpoint Privilege Management Policy Editor 24.1
  • Endpoint Privilege Management ePO Extension 22.7
  • Endpoint Privilege Management Console Adapter 24.1
  • BeyondInsight/Password Safe 23.3
  • Trellix Agent 5.7

If you have a business requirement to downgrade the Mac client, please first uninstall the currently installed version.

Supported Operating Systems:

  • macOS 14 Sonoma
  • macOS 13 Ventura
  • macOS 12 Monterey

For more information about compatibility, please see Privilege Management for Windows and Mac: Supported Versions and Operating System Compatibility.

Notes:

None.