Privilege Management for Windows 22.9 Release Notes

November 29, 2022

Requirements:

• Microsoft .NET Framework 4.0 (required to use Activity Viewer, Power Rules, PowerShell audit scripts, and PowerShell API)
• Microsoft .NET Framework 4.6.2 (required to use Agent Protection)
• Microsoft .NET Framework 4.8 (required to use Multifactor Authentication with an OIDC provider)
• PowerShell 3.0 (required to use Power Rules, PowerShell audit scripts, and PowerShell API)
• Microsoft SQL Server Compact 4.0 (required on the endpoint that will run the Activity Viewer console)
• Trellix (formerly McAfee) Agent (required if you are installing the Privilege Management client with switch EPOMODE=1)

New Features and Enhancements:

• Added further protection features to the Agent Protection mechanism. Now when Agent Protection is enabled, core components of EPM for Windows cannot be tampered with or stopped, even by processes elevated to have admin privileges.
• Added Local Account discovery function to the Password Safe integration to allow the agent to scan for unmanaged local accounts and send them to Password Safe for review.

Policy Editor

• Added New System Workstyle to the QuickStart Policy to protect the Restricted System Functions application group against potentially malicious behavior by a user who can perform elevated Powershell commands.
• Added option to use Windows Hello in messages as an alternative authentication method to user passwords.
• Added option to configure a URL link in macOS messages.

Issues Resolved:

• Resolved issue in which messages could not resolve user passwords for message authentication when users were logging into their endpoints using Window Hello.
• Resolved issue affecting Smart Card authentication for Designated Users in which it would result in a The user name or password is incorrect error message.
• Resolved issue causing the AAD workstyles account filter button to not function properly when the machine was set to French Canadian language.
• Resolved compatibility issue between EPM for Windows and the Cisco AnyConnect Installer.
• Resolved issue that could cause latency when browsing remote shares with File Explorer.
• Resolved potential performance issue with publisher matching in which the Windows Catalog file had become corrupted and EPM for Windows was unable to receive a timely response from requests relying upon it.
• Resolved issue in which local-only policies were intermittently not being updated when Activity logging was enabled.
• Updated to use OpenSSL library v3.0.7 as The OpenSSL Project had disclosed a vulnerability in previous versions of their library.

Compatibility:

• Privilege Management Policy Editor 22.9 (recommended), 5.7+
• Privilege Management ePO Extension 22.7 (recommended), 21.1+
• Privilege Management Console Windows Adapter 22.9 (recommended), 21.6
• BeyondInsight/Password Safe 22.2 (recommended), 7.2
• Trellix Agent 5.7
• Trellix ePO Server 5.10 Update 13

Supported Operating Systems:

• Windows 11
  • 22H2
  • 21H2
• Windows 10
  • 22H2
  • 21H2
  • 21H1
  • 20H2
  • 1909
  • LTSB 2015
  • LTSB 2016
  • LTSC 2019
• Windows 8.1

• Server
  • 2022
  • 2019
  • 2016
  • 2012R2
  • 2012

For more information about compatibility, please see Privilege Management for Windows and Mac: Supported Versions and Operating System Compatibility.

Notes:

• BeyondTrust will be ending support for all new versions of Privilege Management for Windows on Windows 8.1, effective on our next release so that we can concentrate on providing the best possible protection on supported versions of Windows 10 and 11. If you have any concerns about this course of action please get in touch via your usual contact.
• Endpoint Privilege Management for Windows 22.9 supports upgrades from Endpoint Privilege Management for Windows 5.2+.