6.5.3 Appliance

  • 1 minute read
Prev Next

Released October 8 2025

New Features

Risk Sentinel

  • Real-time enforcement of risk-based access via integrations with leading EDR and MDM tools (manual enabling is needed for existing Collectives).

    • Real-time updates of a device and user’s security posture.

    • Automatically stops the spread of attack as quickly as possible.

    • Restores access once a device is secured.

Updates

Security

  • The Risk Engine security posture of users and devices is now immediately reflected on user access whenever there is a change. This must be manually enabled on existing Collectives.

Stability

  • Fixed an issue where the Controller is reported as not running when Application Discovery integration is enabled and the Controller cannot reach ZTP.

  • Fixed an issue where under certain conditions the DNS resolver would restart when doing zone transfer from multiple zones.

  • Fixed an issue where lost connectivity to the LDAP certificate server can make the Controller unresponsive under a high load.

  • Fixed an issue where the Controller did not respond to requests if multiple slashes appeared at any point in the URL path.

  • Fixed an issue where LogForwarder and LogServer performance was degraded in certain configurations with a large number of Appliances.

  • Fixed multiple issues where the log service of the Appliance would crash under certain conditions.

Authentication

  • Fixed an issue where LDAP membership filters weren't applied to direct memberships.

Name resolving

  • The DNS DNS minimum TTL is now defined by the Site Update Interval to avoid overloaded Gateways caused by unstable names with very low TTL.

  • Fixed an issue where the DNS resolver matched domains using case sensitivity.

  • Fixed an issue where it wasn’t possible to create reports in the OpenSearch instance of the LogServer.

Audit logs

  • Fixed an issue where the initial load of the OpenSearch Audit log dashboard interface would result in the view refreshing repeatedly and emitting extraneous network requests until the view was manually saved.

  • Removed unused 'add-name' and 'remove-name' audit logs.

Admin UI

  • Device Claim nomenclature was improved to be more descriptive. There is now a distinction between built-in and scripted (previously on-demand) Device Claims.

  • Fixed an issue where dropdown menus didn’t show the items if an item was already chosen.

Related articles