Endpoint Privilege Management for Windows 23.7.150 Release Notes

October 5, 2023

Requirements:

  • Microsoft .NET Framework 4.6.2 (required to use Power Rules, PowerShell audit scripts, PowerShell API, and Agent Protection)
  • Microsoft .NET Framework 4.8 (required to use Multifactor Authentication with an OIDC provider)
  • PowerShell 3.0 (required to use Power Rules, PowerShell audit scripts, and PowerShell API)
  • Trellix (formerly McAfee) Agent (required if you are installing the Privilege Management client with switch EPOMODE=1)
The executable version of the client package includes all necessary prerequisites (excluding .NET Framework) and automatically installs them as necessary. If you use the MSI or ZIP package, you must manually install any necessary prerequisites.

New Features and Enhancements:

  • Added anti-tamper protection to the PM Cloud Adapter and Package Manager. Processes elevated by Endpoint Privilege Management (EPM) cannot alter their files, services, or registry keys.

Issues Resolved:

  • Resolved an issue to reduce CPU usage occurring with EPM service when some applications cause a lot of service querying. The fix filters out service control traffic to EPM which is not trying to perform EPM controlled service control actions (e.g. start / stop).
  • Resolved two issues with Privilege Management for Windows (PMfW) agent protection feature and upgrades of PMfW and PM Cloud Adapter.
    • Agent protection will prevent the upgrade or install of PM Cloud Adapter and PM Cloud Package Manager unless disabled in advance
    • Agent protection will prevent the upgrade of Privilege Management for Windows by a process running as SYSTEM unless disabled in advance

The issues are resolved by this release. However, existing PMfW services (upgrading from) require you to follow the instructions in the following Knowledge Base article.

For more information, please see https://beyondtrustcorp.service-now.com/csm?id=kb_article_view&sysparm_article=KB0020423

Known Issues:

None.

Compatibility:

  • Endpoint Privilege Management Policy Editor 23.7 (recommended), 21.6+
  • Endpoint Privilege Management ePO Extension 22.7 (recommended), 21.1+
  • Endpoint Privilege Management Console Windows Adapter 23.7 (recommended), 21.8
  • BeyondInsight/Password Safe23.1 (recommended), 7.2
  • Trellix Agent 5.7+
  • Trellix ePO Server 5.10 Service Pack 1 Update 1 (recommended), Update 13+

Supported Operating Systems:

  • Windows 11
    • 22H2
    • 21H2
  • Windows 10
    • 22H2
    • 21H2
    • LTSB 2015
    • LTSB 2016
    • LTSC 2019
    • LTSC 2021
  • Server
    • 2022
    • 2019
    • 2016
    • 2012R2
    • 2012
    • Core 2016
    • Core 2019
    • Core 2022

For more information about compatibility, please see Privilege Management for Windows and Mac: Supported Versions and Operating System Compatibility.

Notes:

None.