Changelog 4.0-25.09.01

Prev Next

Release Date: 2025-09-01


API

New Feature

Item Description
SSGR-5310 Added a new endpoint to the CLM API that enables downloading certificates.
See the documentation Certificate Manager.

DevOps Secret Manager

Bug fixes

Item Description
SSGR-7377 Fixed an issue in DSM where rotating a child credential did not trigger the rotation of its parent secret, now any change to the child credential correctly initiates the secret's rotation process.

Discovery

Bug fixes

Item Description
SSGR-7206 Improved scan speed in the Discovery module, reducing the time required to locate and identify devices in the network. This update provides a faster and more efficient experience for users working in environments with a high number of assets.

EPM Client Manager

Product Updates

Item Description
EPM-873 Updated the EPM dashboard's Version Distribution view, which previously showed a single, inaccurate chart that combined all operating systems and counted duplicate devices, now it is split into three distinct charts (Windows, macOS, and Linux) that accurately count only unique devices, offering a clear, segmented view of client versions on each platform.
EPM-874 Updated the Clients Report, which did not allow filtering by client version, now features a new search filter for exact client versions, with results always sorted from newest to oldest by registration date.

Bug fixes

Item Description
EPM-857 Fixed an issue where segregated policies across all platforms (Windows, macOS, Linux) would not display their associated devices or users when viewing the policy details, now this information is correctly shown upon inspection.
EPM-641 Fixed an issue where a EPM Linux sudo rule created for multiple users, including root, was only being applied to the root user, now the rule is correctly applied to all users specified in the policy.

EPM MacOS

Translation Fixes

Item Description
EPM-864 Fixed a string that was displayed in Portuguese when registering sudo rules, even though the user’s language was set to English.

New Feature

Item Description
EPM-95 Added session recording support in EPM macOS, which captures the execution of applications linked to access lists or authorization rights with recording enabled.
EPM-35 Added a parameter to configure the synchronization interval between EPM macOS clients and the backend, allowing custom adjustments between 15 and 60 minutes, in 5-minute increments, to better align with organizational security policies.
EPM-33 Added a new decision flow that allows defining custom criteria to allow execution of applications in graylist.
EPM-27 Added support for mass deployment of the EPM macOS client without requiring Mobile Device Management (MDM) tools.
EPM-26 Added remote deployment support using configuration profiles via Mobile Device Management (MDM) for EPM macOS.
EPM-28 Added execution control in EPM macOS with support for Allowlist, Denylist, and Graylist.
EPM-414 Added support for using PCRE2 regular expressions (Regex) in the creation of access lists for EPM macOS clients.

Product Updates

Item Description
EPM-175 Added support for arbitrary URLs in the Segura configuration, with URL and IP validation for both manual and remote installations.
EPM-176 Added macOS support to distinguish device-specific allowlist/blacklist rules from general rules, ensuring correct prioritization based on rule specificity.

EPM Windows

Bug fixes

Item Description
EPM-797 Fixed an issue where a failed password change could lock a user's Active Directory account, now the system validates current credentials before initiating the change, and the original password remains active if the process fails, preventing lockouts.

MySafe

Product Updates

Item Description
SSGR-7256 Was adjusted the body of the external sharing email to display the date using the server-configured time zone.
SSGR-7227 Was changed the behavior of the Sending account field in MySafe > Global administration > Sharing options, which is now required when external sharing is enabled. A warning was also added to the Base URL field to indicate mandatory configuration in multi-tenant environments.

Orbini/Orbit

Product Updates

Item Description
SSGR-7015 Fixed the GitHub link on the templates page, which was broken due to the rebranding and update of the repository URL.
SSGR-4757 Added support for real-time validation of required fields across all wizards in Segura, providing immediate feedback to users during form completion and preventing progression to the next step or form submission when required fields are left unfilled.

PAM - Credential Management

Bug fixes

Item Description
SSGR-7177 Fixed an issue where, after removing the RDP connection from credential, it wasn’t possible to start a remote session. Now, the remote session can be started regardless of whether the RDP connection is enabled or not.
SSGR-7383 Fixed an issue where it was only possible to view the last 10 passwords from the credential history via web interface.

Product Updates

Item Description
SSGR-6867 Melhorado o processo de importação em lote para permitir que administradores atribuam um Owner ou um Access Policy ID usando a planilha de importação. Para garantir a atribuição correta de permissões, o sistema agora prioriza a Access Policy caso ambos os campos sejam fornecidos para o mesmo item.
SSGR-7192 Removed the feature Recording from the System parameters > Global menu and moved it to the System parameters > Segregated menu.

PAM - Session Management

Security

Item Description
SSGR-7208 Fixed an issue where, within VNCHTTP remote session, it was possible to improperly access websites by dragging text containing links to the tab bar.

Bug fixes

Item Description
SSGR-7174 Fixed an issue that allowed users to improperly access websites and web applications through the creation of bookmarks in Mozilla Firefox toolbar.
SSGR-7064 Fixed an issue where the DBproxy connection to PostgreSQL was only stablished if the session video recording parameter was enabled. Now, the connection is independent of this parameter.
SSGR-7079 Fixed an issue where the DBproxy connection to SQL Server was only stablished if the session video recording parameter was enabled. Now, the connection is independent of this parameter.

SaaS

Bug fixes

Item Description
SSGR-6493 Resolved an issue where Domum access requests in the SaaS environment would fail instantly, incorrectly showing a gateway timeout error. These requests are now handled properly, and the gateway connection is stable.
SSGR-6492 Fixed an issue in the SaaS environment where users would intermittently receive a "Service Temporarily Unavailable" error when starting sessions, now sessions launch reliably, ensuring consistent platform access.

Settings

Translation Fixes

Item Description
SSGR-4385 Fixed messages that were displayed only in English on the Settings > System Parameters > Global report, both in empty search results and in the display of the number of records shown, regardless of the user's language.
SSGR-6289 Fixed the “Domínio” string, which was displayed in Portuguese in the Servers addition wizard, even when the user’s language was set to English.
SSGR-7170 Corrected the confirmation message shown when disabling a record in Providers by User. The message now properly indicates that the record was disabled, aligning with the expected behavior of the functionality.