Elements Endpoint Protection Portal Changelog
Comments
-
Dear Community,
An update containing performance improvements to Software Update views has been rolled out to all environments. Viewing and manipulating even bigger data sets of installation records or missing updates is now much faster in overall. At the same time the reliability of listing missing updates has been improved.
Best Regards,
EPP Team
0 -
Dear Community,
A new release 1.0.3824 (85603) is being rolled out with following fixed issues:
- Label and alias editing wasn't working properly, neither from computers pilot or device view
- Device view in piloting search issue
- Number of devices was incorrect when comparing between Elements Endpoint Protection Portal and Computers PILOT
- Wrong data in the report function : shows the wrong version for windows 10 build 10.0.19042 (21H2 instead of 20H2)
- Fixed bug with displaying overall protection status of mobile devices
EPP Team
0 -
Dear Community,
A new release 1.0.3853 is being rolled out with following changes:
New feature:
- Administrators can send messages from portal to Windows EPP clients. Note: the feature requires Elements EPP Windows agent version 22.3+ to display the message.
Select device(s)
Type the message you want to send to the device(s)
Message received on selected Elements Windows agent
Best Regards,
EPP Team
1 -
Dear Community,
A new release 1.0.3866 is being rolled out with fix for following issue:
- Cannot save a profile if new automated task is added
Other changes:
- Removed the FSdiag operation listing from Root home and support page. This list of FSDiag operations can be found on Devices page→3 dots menu→View fsdiag operations
Best Regards,
EPP Team
2 -
Dear Community
We are rolling out today a new release with following new feature:
- Security Events starts reporting EDR BCDs that are severe, high or medum risk incidents. If you want to forward these events to SIEM with Elements Connector you need to upgrade to new 22.18/22.19 release.
Best Regards,
EPP Team
2 -
Dear Community,
A new release 1.0.3877 is being rolled out. New release contains only internal changes not visible for end customer.
1 -
Dear Community,
A new release 1.0.3877 is being rolled out with the following changes.
New features
- DataGuard now supports showing an overlay icon on top of protected folders
- Automated Tasks now support task parameters
- Scan for malware in a folder
- Power management tasks (restart, shutdown) now support a custom message and delay
- IPv6 addresses are separated from IPv4 and visible in new devices listing
Improvements:
- Profile "label" is now renamed to Profile "type"
Introducing a toggle to enable new Dashboard and Devices views
We are introducing a new dashboard view along with making the new devices view more easily available. These views won't be made as defaults yet, but you can find a toggle from the Dashboard that allows you to switch back and forth between the versions.
Things to note regarding new views:
- Dashboard will now look the same on both partner and company levels
- Dashboard will list following issues:
- Devices pending for reboot
- Devices having malware protection disabled, malfunction or expired
- Devices having dangerous exclusions in profiles / local settings
- Devices having outdated malware definitions
- Devices having outdated scan results for software updates
- Devices missing critical or important software updates
- Devices having firewall disabled (profile or GPO)
- Devices having low disk space (less than 5GB)
- Devices having severe or high EDR incidents
- Connectors having certificates expiring soon
- Device view allows customized set of columns to be shown
- Device view allows custom views to be saved
- Device view allows more flexible filtering capabilities
Known issues & Commonly asked questions:
- Change subscription feature is still in development and will be made available later in the new devices view
- Canceling "Add new device" flow from new EPP dashboard ends up in new Devices view
- Opening device details view to new tab fails to load Elements Navigation
Best Regards,
EPP Team
1 -
Dear Community,
It is my great pleasure to inform you that a new feature has been activated in the Audit Log view. Apart from the event timestamp filter available already it is currently possible to filter by the administrator that has initiated the action.
Should you need more details where to find the new filter refer to the screenshot below
Regards,
EPP Team
0 -
Dear Community,
A new release 1.0.3962 is being rolled out. New release contains only internal changes and improvements. No new feature has been delivered in this release.
Improvements:
- If company has AD data then default profiles tab always shows active directory section.
- Current version and target version for MS products on device updates screen is shown as N/A.
Thanks,
EPP Team
1 -
Dear Community,
A new release 1.0.3974 was rolled out. It contains only internal changes and improvements. No new feature has been delivered in this release.
Thanks,
EPP Team
1 -
Dear Community,
An update adding the removal of the pending invitations has been rolled out to all environments. Invitations can be removed from "Manage device invitations" view. After the removal, invitation emails are still in the invitees' mailboxes, but activation links are invalidated.
Best regards,
EPP Team
1 -
Dear Community,
A new version 1.0.3978 was rolled out. It contains internal changes and improvements. Also a configuration change was introduced: WMI Provider is now enabled by default. For details please see
Best regards,
EPP Team
0 -
Dear Community,
As the new Dashboard (Advisory Service) and Devices page have been available behind a toggle for some time now, we are moving forward with bringing these views as the default ones. As of today these new views are set as the default and are the first thing you see when you login to Elements portal. The toggle to switch between old and new views will remain on the dashboard still a while longer as we migrate final features and iron out any potential issues discovered.
Please note that there might be differences in the data shown in new and old views. New views utilise different services, different data sets and different logic to show information. Old views utilised data that was pre-calculated and updated periodically where as the new views the data is more real time and better reflect the current status and more accurate information.
New items:
- Dashboard will now also show a issue item for Windows clients which are no longer supported
- "Change subscription" operation is now available also on new device view
Known issues:
- Bitlocker recovery keys are not visible on the new device view side yet
- Dashboard shows issue listing for all devices, even for devices that have been inactive for a longer period of time. This is to be fixed in future.
- "Select updates and install" in the device details view might be missing momentarily but should appear as soon as the devices status change and data is updated. Software Update installations can still be performed normally from device listing and Software Updates pages
New Dashboard view:
New Devices View:
Best regards,
EPP Team
0 -
Dear community,
A new release 1.0.3993 was rolled out. It contains only internal changes and improvements.
Best regards,
EPP Team
0 -
Dear Community,
An update adding Bitlocker recovery keys to the new Devices view device details has been rolled out to all environments.
Best Regards,
EPP Team
2 -
Dear Community,
A new release is being rolled out today, September 13th 2022, with the following changes:
New features:
- We added an end of life notification to old device and homepage views, announcing their unavailability from October 4th 2022
- Display feature Malware for Android in new devices view
- Display feature Malware for Linux in new devices view
- For profiles, browsing protection section, a new setting has been added "Include the blocked URLS in all security events".
By default we only include information on blocked domains when the site was blocked for security reasons. Now you have an option to also include blocked sites when the feature is for enforcing policy (such as Content Control). Due to differences in local legislation regarding monitoring online activity of employees, this feature is disabled by default
Fixes:
- Elements connector profile tab was missing in production for some accounts and users
- Security Events could not be filtered by Time with "Before" and "After" conditions at the same time
Best Regards,
EPP Team
1 -
Dear Community,
we have just released the Security Events -> email notification for Infection alerts feature with localization support for all languages.
Please do note that this feature only supports infection types of Security events:
The goal of this first release is to replace the old Reports -> Infections -> Alert configuration feature. This old feature will be removed on October 4th 2022. Before removal we will migrate everyone who has configured emails in the old side to receive them from the new Security Events side. Due to this migration, some people might receive duplicate emails on the October 4th, but after this everything comes from Security events.
If you wish to do the migration yourself, just add the email sending to new side and disable it from old side before 4th of October. Our migration will only do it for accounts, that haven't been configured to have email notifications on Security Events side.
Best Regards,
EPP Team
PS. Many of you have noticed that this feature and event the End-of-life message on old side has been on for 3+ weeks already. It unfortunately did not work correctly in production for localized messages and we had to revert it to working in English only mode. Now it has the feature set like it should.
PS.. Some production localization still show the old migration date of 20th of September. We delayed it by 2 weeks to 4th of October due to these problems with properly localized messages.
0 -
Dear community,
We are switching to weekly updates as most of releases happens during a week in rolling release manner.
What's new in week 37
New features:
New chart in Reports under Security Events section has been added: Top computers by tampering attempts.
Improvements:
Device details now shows overall malware status for Linux clients.
Fixed issues:
- Fixed incorrect handling of dangerous exclusions in case of having both profile and local exclusions.
- Fixed remote operation for Linux devices that was incorrectly described as Pending even though operation was performed by client.
- Description has been updated to inform about EOL for Reports → Infections tab. It will happen on October 4th 2022.
- Fixed issue for clients move between subscriptions. It was rejected for devices that has not connected with EPP yet.
1 -
What's new in week 38
New features:
We introduced new column in device list: OS End of Life. It shows if Windows device is running an OS version that is no longer supported by Microsoft.
It's now possible to temporarily turn off security features. It has been added as operation in device view.
New type of automated tasks has been added: Lock workstation. It locks user workstation depending on the given schedule or event.
New Table has been added to the Firewall profile. It allows to always allow specific rules and rule groups.
In Software updater settings a new toggle has been introduced: Install only signed updates. When turned on all unsigned updates will not be installed. Enabling this feature increases security as only verified updates will be installed.
0 -
Dear community,
What's new in week 39
New feature:
A new Blocked Websites graph has been added to Security Events reports
Improvement:
Information about number of affected devices has been added to action button when removing/uninstalling with select all
Best Regards,
EPP Team
1 -
Dear community,
What's new in week 40
New features:
- To make it easier for an admin to see what is happening, clients intelligently decide if an event needs to be sent to be visible in Security Events. The count of throttled events tells you how many duplicate events were dropped by clients during the previous hour. This throttling has been always in place in our clients, but now we are making it visible on the Security Events side.
Improvements:
- All old Infection > Email notification users have been migrated to receive emails from Security Events > Infections Alerting Configuration. At the same time PILOT word from Security events was finally dropped as we have managed to replace all functionalities done by old infections.
- Partner Portal links to Order and Change Subscription in subscriptions view have been removed. Partner Portal link is available for administrators with proper access in solution selector.
- Switched On-Demand Summary Report to include last 30 days instead of last 28 days to better align the report data with what is visible in the Reports section.
Removed features:
- The old dashboard and old devices view have been removed
- The Reports > Infections tab has been removed.
- Administrators with subscription only access rights are now not able to create new SOP level administrators.
Best Regards,
EPP Team
0 -
Dear community,
What's new in week 41
New features:
A new Top computers accessing blocked websites graph has been added to the Security Events reports
Improvements:
- Tamper Protection on Windows is enabled by default for EMEA & AMER portals. Please, refer to the article explaining the details: https://community.withsecure.com/en/kb/articles/29328-tamper-protection-enabled-by-default
Fixed issues:
- Fixed issue for the profiles deletion. It was not possible to delete profiles with 0 devices assigned.
Best Regards,
EPP Team
0 -
Dear community,
What's new in week 42
Improvements:
- When creating partner level administrator Access Rights are now restricted only to "security and subscription management". Editing a partner administrators allows to select "security and subscription management" or leave current access rights.
- Filter / search Application Control rules on top of the Application Control rules.
- In Automated Tasks we renamed a toggle from "Start when available" to "Never skip". It is just a wording change without changing the meaning to make the name sound more natural and simple.
- Added ability to configure alerts per browsing protection category. Admin can select which browsing protection category blocks send alerts and which are silently blocked.
- Added an option to profiles to edit submit sample url for browsing protection.
Fixed issues:
- Some subscriptions where not shown in change subscription UI.
- Turn off feature operation did not work from device list view when using select all, multi selection or filtered selection.
- Infinite scope selector loop in Devices view.
- Fixed invalid change log links in Download page.
Best Regards, EPP Team
0 -
Dear community,
What's new in week 43
Improvements:
- Added retention information to portal for Security events.
- Improved Endpoint encryption and encrypted drives view in device details (Windows only)
Best Regards, EPP Team
0 -
Dear community,
What's new in week 44
New features:
- Added confirmation dialogue for potentially disruptive remote operations. Confirmation is asked for the following operations: Restart system, Network isolation, System drive encryption, Turn off security features, Uninstall and Request diagnostic file.
- Added info flyouts for some devices view columns. The info flyouts contain general information about the column and / or information about the possible values that the column in question can have.
- A new Issue type in Elements EPP dashboard has been added: "Servers no longer connected to Elements". This new issue type helps to identify which servers stopped communicating with Elements, potentially due to problems or mis-configuration.
- Added the possibility to filter Audit Logs by Transaction ID.
- Added New audit log events for enabling and disabling Security events email notifications.
Fixed issues:
- Fixed an issue where Export devices to CSV was not working for some administrators.
- Fixed an issue where clicking X or Cancel buttons in the EPP Portal's Manage automatic deletion page would not take the use back on the Firefox browser.
Best Regards, EPP Team
0 -
Dear Community,
What’s new in week 45?
Improvements:
- Editing administrator's own email address is now disabled in accounts view
This action is available through 'My Settings' view in Portal's top-right corner.
Fixed Issues:
- Fixed an issue where security events list wasn't showing old events properly on Firefox when scrolling down.
- Fixed an issue where 3 dot action menu in Subscriptions view wasn’t displaying export CSV option when filters “Expiring subscription within 14 days” or “Expiring subscription within 60 days” applied.
- Replaced F-Secure logo with With Secure logo in login error view.
- Fixed Firefox back button navigation issue from devices menu.
- Fixed root home search where previously it wasn't possible to search companies with exact match like "Comp Name - XYZ".
Best Regards,
EPP Team
0 -
Dear Community,
What’s new in week 46?
Improvements:
Improved popover message for 'WithSecure Vulnerability Management' in Subscription view
Timestamps are now in human-readable format in device CSV export files
Browsing Protection/website exceptions toggle can now be managed via the "Network Location Settings"
Best regards,
EPP Team
0 -
Dear community,
What's new in week 47
New features:
- Both Security Events and Audit Log filters has been made editable.
Fixed issues:
- Admin creation is now possible with language Chinese (Taiwan).
- Software updates reports now shows an empty graph instead of error flyer in case of accounts with no devices.
Best Regards,
EPP Team
0 -
Dear community,
What's new in week 48
Fixed issues:
- Subscription and Download page keeps loading in the EPP portal when new Spanish or Portugese user tries to login.
- Status of patch management remote operations where incorrectly shown in operations views in case of failed operations.
Best Regards,
EPP Team
0 -
Dear community,
What's new in week 49
New features:
- Assignment rules allows for flexibly assigning profiles and labels during client installation based on device data matching IP, DNS, Active Directory, WINS/hostname based rules. Rules are flexible and allows wildcard matching. This feature replaces the existing "Default profiles" view in EPP portal.
Content type filtering is able to scan content type on all pages, not only on unsafe ones
- "Turn on debug logging" remote operation is available now
Improvements:
- Make each tab in device details a separate route, so user can open them in new browser tabs
- VPN related data should not be shown in details view for iOS or for Android with mobile-without VPN subscription
Fixed issues:
- Deleted devices sometimes reappear back in portal
- Data inconsistency for profile name between devices menu and missing updates for a computer screen is fixed. Now both screens have same profile name for a particular device.
Removed features:
- Freedome and Mobile Security subscription types are EoL and will become expired no later than 07.01.2023. Customers should use Mobile Protection subscription instead.
Best Regards,
EPP Team
0
