Endpoint Privilege Management for Mac 24.3 Release Notes

May 7, 2024

Requirements:

  • Trellix (formerly McAfee) Agent (required if you are installing the Privilege Management client with Trellix).

New Features and Enhancements:

  • Introducing the EPM Package Manager for macOS. The EPM Package Manager (Package Manager) is an optional feature in EPM which helps organizations install and maintain the Endpoint Privilege Management client and the EPM adapter. Package Manager can also automatically update when a new version is detected, taking even more burden off estate administrators. The new Configuration profile version 2.1.0 is recommended.
    • Configure the Package Manager installation string
    • Download the Package Manager installation executable
    • Configure update settings for a computer group
    • Track computer and computer group updates
    • Set throttling and preferred update times so that updates can be strategically and safely installed.

Issues Resolved:

  • Resolved an issue where the user's username could be manually edited using native macOS Accessibility APIs; this field can no longer be bypassed.
  • Resolved an issue where Password Safe for Mac did not support the Scheduled Password Check functionality.
  • Resolved an issue with opening two installer windows at the same time. Installs can now finish successfully when more than one installer windows can be open.
  • Resolved an issue with using macOS Sonoma with auto-enrolment once EPM-M was uninstalled; devices could not use the profiles command to renew their remote management profiles.
  • Resolved an issue where EPM-M was preventing the use of Unattended access mode in the LogMeIn Remote Support application.
  • Resolved an issue accessing AppSSOAgent software which prevented access to the platform single sign-on framework. Updated the Ignore Rights list to include system.platformsso.auth with others to ensure correct access to use SSO functionality.

Known Issues:

Using Run with Privilege Management for the Console.app in macOS will not work. This is due to changes with macOS which we’ve raised with Apple with a Feedback assistant ticket FB9739423. After investigation, we have deprecated this feature due to restrictions in macOS architecture. We are investigating potential solutions. See New Features and Enhancements earlier in this release notes.

Compatibility:

  • Endpoint Privilege Management Policy Editor 24.3
  • Endpoint Privilege Management ePO Extension 22.7
  • Endpoint Privilege Management Console Adapter 24.3
  • BeyondInsight/Password Safe 24.1
  • Trellix Agent 5.7

If you have a business requirement to downgrade the EPM-M client, first uninstall the currently installed version.

Supported Operating Systems:

  • macOS 14 Sonoma
  • macOS 13 Ventura
  • macOS 12 Monterey

For more information about compatibility, see Privilege Management for Windows and Mac: Supported Versions and Operating System Compatibility.

Notes:

None.