Endpoint Privilege Management for Windows 23.1 Release Notes

March 23, 2023

This release has been removed due to an issue with the task tray icon menu. We recommend upgrading to Endpoint Privilege Management for Windows 23.1.269. For more information, please contact BeyondTrust Technical Support.

Requirements:

  • Microsoft .NET Framework 4.0 (required to use Activity Viewer, Power Rules, PowerShell audit scripts, and PowerShell API)
  • Microsoft .NET Framework 4.6.2 (required to use Agent Protection)
  • Microsoft .NET Framework 4.8 (required to use Multifactor Authentication with an OIDC provider)
  • PowerShell 3.0 (required to use Power Rules, PowerShell audit scripts, and PowerShell API)
  • Microsoft SQL Server Compact 4.0 (required on the endpoint that will run the Activity Viewer console)
  • Trellix (formerly McAfee) Agent (required if you are installing the Privilege Management client with switch EPOMODE=1)
The executable version of the client package includes all necessary prerequisites (excluding .NET Framework) and automatically installs them as necessary. If you use the MSI or ZIP package, you must manually install any necessary prerequisites.

New Features and Enhancements:

Client

  • A new menu is available from the task tray that shows policy information such as the policy source and last modified (on disk) time, and system information such as client and adapter versions (where relevant).
  • New addition to the agent protection for Endpoint Privilege Management for Windows. When agent protection is turned on for an endpoint, admin users are prevented from stopping or terminating the Defendpoint service.
  • Supports new enabled and disabled states for application rules and application definitions.

Issues Resolved:

  • Resolved issues with the cmdlets.dll not returning expected values for some functions.
  • Resolved issues with the cmdlets.dll not returning expected values for catalog signatures.
  • Resolved a compatibility issue in which the Intel Driver & Support Assistant would show UAC messages instead of Endpoint Privilege Management for Windows prompts.
  • Resolved an issue that could lead to memory not being freed adequately by our service, leading to increased memory consumption.
  • Added a delay to some event generation to account for situations in which host information was not yet available from the OS.

Compatibility:

  • Privilege Management Policy Editor 23.1 (recommended), 5.7+
  • Privilege Management ePO Extension 22.7 (recommended), 21.1+
  • Privilege Management Console Windows Adapter 23.1 (recommended), 21.6
  • BeyondInsight/Password Safe 22.4 (recommended), 7.2
  • Trellix Agent 5.7
  • Trellix ePO Server 5.10 Update 13

Supported Operating Systems:

  • Windows 11
    • 22H2
    • 21H2
  • Windows 10
    • 22H2
    • 21H2
    • 20H2
    • LTSB 2015
    • LTSB 2016
    • LTSC 2019
  • Windows 8.1
  • Server
    • 2022
    • 2019
    • 2012R2
    • 2012
    • Core 2016
    • Core 2019
    • Core 2022

For more information about compatibility, please see Privilege Management for Windows and Mac: Supported Versions and Operating System Compatibility.

Notes:

  • As of 23.1, we will no longer be supporting the Activity Viewer application that came bundled with previous versions of Endpoint Privilege Management for Windows. As we continue to add features to the product, we have identified a need to explore alternative options for how we can provide the functionality of Activity Viewer in a modern way that works across our solution, and this will be included in a future release of Endpoint Privilege Management.