Release Date: 2025-09-01
API
New Feature
| Item | Description |
|---|---|
| SSGR-5310 | Added a new endpoint to the CLM API that enables downloading certificates. See the documentation Certificate Manager. |
DevOps Secret Manager
Bug fixes
| Item | Description |
|---|---|
| SSGR-7377 | Fixed an issue in DSM where rotating a child credential did not trigger the rotation of its parent secret, now any change to the child credential correctly initiates the secret's rotation process. |
Discovery
Bug fixes
| Item | Description |
|---|---|
| SSGR-7206 | Improved scan speed in the Discovery module, reducing the time required to locate and identify devices in the network. This update provides a faster and more efficient experience for users working in environments with a high number of assets. |
EPM Client Manager
Product Updates
| Item | Description |
|---|---|
| EPM-873 | Updated the EPM dashboard's Version Distribution view, which previously showed a single, inaccurate chart that combined all operating systems and counted duplicate devices, now it is split into three distinct charts (Windows, macOS, and Linux) that accurately count only unique devices, offering a clear, segmented view of client versions on each platform. |
| EPM-874 | Updated the Clients Report, which did not allow filtering by client version, now features a new search filter for exact client versions, with results always sorted from newest to oldest by registration date. |
Bug fixes
| Item | Description |
|---|---|
| EPM-857 | Fixed an issue where segregated policies across all platforms (Windows, macOS, Linux) would not display their associated devices or users when viewing the policy details, now this information is correctly shown upon inspection. |
| EPM-641 | Fixed an issue where a EPM Linux sudo rule created for multiple users, including root, was only being applied to the root user, now the rule is correctly applied to all users specified in the policy. |
EPM MacOS
Translation Fixes
| Item | Description |
|---|---|
| EPM-864 | Fixed a string that was displayed in Portuguese when registering sudo rules, even though the user’s language was set to English. |
New Feature
| Item | Description |
|---|---|
| EPM-95 | Added session recording support in EPM macOS, which captures the execution of applications linked to access lists or authorization rights with recording enabled. |
| EPM-35 | Added a parameter to configure the synchronization interval between EPM macOS clients and the backend, allowing custom adjustments between 15 and 60 minutes, in 5-minute increments, to better align with organizational security policies. |
| EPM-33 | Added a new decision flow that allows defining custom criteria to allow execution of applications in graylist. |
| EPM-27 | Added support for mass deployment of the EPM macOS client without requiring Mobile Device Management (MDM) tools. |
| EPM-26 | Added remote deployment support using configuration profiles via Mobile Device Management (MDM) for EPM macOS. |
| EPM-28 | Added execution control in EPM macOS with support for Allowlist, Denylist, and Graylist. |
| EPM-414 | Added support for using PCRE2 regular expressions (Regex) in the creation of access lists for EPM macOS clients. |
Product Updates
| Item | Description |
|---|---|
| EPM-175 | Added support for arbitrary URLs in the Segura configuration, with URL and IP validation for both manual and remote installations. |
| EPM-176 | Added macOS support to distinguish device-specific allowlist/blacklist rules from general rules, ensuring correct prioritization based on rule specificity. |
EPM Windows
Bug fixes
| Item | Description |
|---|---|
| EPM-797 | Fixed an issue where a failed password change could lock a user's Active Directory account, now the system validates current credentials before initiating the change, and the original password remains active if the process fails, preventing lockouts. |
MySafe
Product Updates
| Item | Description |
|---|---|
| SSGR-7256 | Was adjusted the body of the external sharing email to display the date using the server-configured time zone. |
| SSGR-7227 | Was changed the behavior of the Sending account field in MySafe > Global administration > Sharing options, which is now required when external sharing is enabled. A warning was also added to the Base URL field to indicate mandatory configuration in multi-tenant environments. |
Orbini/Orbit
Product Updates
| Item | Description |
|---|---|
| SSGR-7015 | Fixed the GitHub link on the templates page, which was broken due to the rebranding and update of the repository URL. |
| SSGR-4757 | Added support for real-time validation of required fields across all wizards in Segura, providing immediate feedback to users during form completion and preventing progression to the next step or form submission when required fields are left unfilled. |
PAM - Credential Management
Bug fixes
| Item | Description |
|---|---|
| SSGR-7177 | Fixed an issue where, after removing the RDP connection from credential, it wasn’t possible to start a remote session. Now, the remote session can be started regardless of whether the RDP connection is enabled or not. |
| SSGR-7383 | Fixed an issue where it was only possible to view the last 10 passwords from the credential history via web interface. |
Product Updates
| Item | Description |
|---|---|
| SSGR-6867 | Melhorado o processo de importação em lote para permitir que administradores atribuam um Owner ou um Access Policy ID usando a planilha de importação. Para garantir a atribuição correta de permissões, o sistema agora prioriza a Access Policy caso ambos os campos sejam fornecidos para o mesmo item. |
| SSGR-7192 | Removed the feature Recording from the System parameters > Global menu and moved it to the System parameters > Segregated menu. |
PAM - Session Management
Security
| Item | Description |
|---|---|
| SSGR-7208 | Fixed an issue where, within VNCHTTP remote session, it was possible to improperly access websites by dragging text containing links to the tab bar. |
Bug fixes
| Item | Description |
|---|---|
| SSGR-7174 | Fixed an issue that allowed users to improperly access websites and web applications through the creation of bookmarks in Mozilla Firefox toolbar. |
| SSGR-7064 | Fixed an issue where the DBproxy connection to PostgreSQL was only stablished if the session video recording parameter was enabled. Now, the connection is independent of this parameter. |
| SSGR-7079 | Fixed an issue where the DBproxy connection to SQL Server was only stablished if the session video recording parameter was enabled. Now, the connection is independent of this parameter. |
SaaS
Bug fixes
| Item | Description |
|---|---|
| SSGR-6493 | Resolved an issue where Domum access requests in the SaaS environment would fail instantly, incorrectly showing a gateway timeout error. These requests are now handled properly, and the gateway connection is stable. |
| SSGR-6492 | Fixed an issue in the SaaS environment where users would intermittently receive a "Service Temporarily Unavailable" error when starting sessions, now sessions launch reliably, ensuring consistent platform access. |
Settings
Translation Fixes
| Item | Description |
|---|---|
| SSGR-4385 | Fixed messages that were displayed only in English on the Settings > System Parameters > Global report, both in empty search results and in the display of the number of records shown, regardless of the user's language. |
| SSGR-6289 | Fixed the “Domínio” string, which was displayed in Portuguese in the Servers addition wizard, even when the user’s language was set to English. |
| SSGR-7170 | Corrected the confirmation message shown when disabling a record in Providers by User. The message now properly indicates that the record was disabled, aligning with the expected behavior of the functionality. |