Privilege Management for Windows 22.1 Release Notes

February 22, 2022

Requirements:

  • Microsoft .NET Framework 4.0 (required to use Activity Viewer, Power Rules, PowerShell audit scripts, and PowerShell API)
  • Microsoft .NET Framework 4.8 (required to use Multifactor Authentication with an OIDC provider)
  • PowerShell 3.0 (required to use Power Rules, PowerShell audit scripts, and PowerShell API)
  • Microsoft SQL Server Compact 4.0 (required on the endpoint that will run the Activity Viewer console)
  • McAfee Agent (required if you are installing the Privilege Management client with switch EPOMODE=1)
The executable version of the client package includes all necessary prerequisites (excluding .NET Framework) and automatically installs them as necessary. If you use the MSI or ZIP package, you must manually install any necessary prerequisites.

New Features and Enhancements:

  • Client
    • Endpoint Privilege Management for Windows, when used with a BeyondInsight platform that is connected to Azure Active Directory (AAD), is now able to query BeyondInsight for the AAD groups that the logged in user belongs to, and can use these to apply workstyle filters.
    • Endpoint Privilege Management for Windows can search through all certificates on an application to look for a matching Publisher, rather than using only the first one.
    • You can now specify a suppression period for requiring a user to authenticate with MFA on messages.
  • Policy Editor
    • You can now specify a suppression period for requiring a user to authenticate with MFA on messages.

Issues Resolved:

  • Resolved issue in which the Endpoint Privilege Management for Windows Policy Editor could freeze when changes to user groups were made using lusrmgr.msc.
  • Resolved issue in which smart card error text was missing in messages.
  • Resolved issue in which the refer URL created unwanted empty white space in messages.
  • Removed options that were not applicable to macOS from their node in the Policy Editor.
  • Resolved error message that could be seen when changing languages in the Policy Editor.
  • Resolved issue in which the combination logic for RADIUS was incorrect.
  • Resolved issue in which the default timing was not applied if no timeout was specified when using PowerShell API to create policy.

Compatibility:

  • Privilege Management Policy Editor 22.1 (recommended), 5.6+
  • Privilege Management ePO Extension 21.2 (recommended), 5.2+
  • Privilege Management Console Windows Adapter 22.1 (recommended), 21.1
  • BeyondInsight/Password Safe 22.1 (recommended), 7.2
  • McAfee Agent 5.7 (recommended), 5.6+
  • McAfee ePO Server 5.10 (recommended), 5.9

Supported Operating Systems:

  • Windows 11
    • 21H2
  • Windows 10
    • 21H2
    • 21H1
    • 20H2
    • 2004
    • 1909
    • LTSB 2015
    • LTSB 2016
    • LTSC 2019
  • Windows 8 / 8.1
  • Windows 7
  • Server
    • 2022
    • 2019
    • 2016
    • 2012R2
    • 2012

For more information about compatibility, please see Privilege Management for Windows and Mac: Supported Versions and Operating System Compatibility.

Notes:

  • Endpoint Privilege Management for Windows 22.1 supports upgrades from Endpoint Privilege Management for Windows 5.2+.