Secure Endpoint 9.2 release notes

This topic describes the software changes included in Secure Endpoint 9.2.

This release introduces performance, security, data integrity, and usability improvements that enhance the responsiveness, reliability, and ease of use of the system. It also introduces enhancements, improvements, and fixes to existing features and functionality.

To view the software changes introduced in this release that apply to the Secure Endpoint Agent, see the Secure Endpoint Agent 9.2 release notes.

Depending on the Absolute product licenses associated with your account, some of the following features, enhancements, and fixes may not be available to you.

Features and enhancements

The following Endpoint Data Discovery (EDD) enhancements are now available:

  • Local AI Models rule (New!)

    The Local AI Models rule identifies Artificial Intelligence (AI) applications installed on your devices by scanning for specific file extensions. AI apps pose a risk because users may inadvertently share proprietary or confidential information while using an AI app. Learn more

    You can enable this new rule in your EDD policies and view the scan results in EDD reports.

  • On the Policies page in a device's Device Details, the following icons are now associated with the applicable rule type:

    • : Local AI Model rule
    • : Custom EDD rule
  • To improve the performance of the Devices with At-Risk Files in Cloud report, its filter and sort options have been simplified. Specifically:
    • In addition to the filters that are included by default, you can now filter by:
      • Device
      • Match score
      • Scan date
    • You can now use the following columns to sort the report:
      • File match status
      • Match score
      • Scan date

The following event is now logged to Event History:

  • Refurbishment Blocked

    This event applies to missing and stolen devices only.

If desired, you can create an Alert rule based on this new event.

The following Absolute Bash scripts are now available in the Reach script library:

  • Disable automatic login
  • Disable DVD or CD sharing
  • Disable NFS server
  • Disable user account password hint
  • Enable auto update
  • Enable the Limit Ad Tracking setting
  • Show Wi-Fi status in menu bar

These scripts are available for Mac devices only.

Features at end-of-life

Absolute has retired the following features:

Feature Details
Event History report

The pre-defined Event History report has been retired, and the link to this report has been removed from the Events report category in the Reports area. All user-defined reports based on the Event History report are also retired.

You can now track actions as follows:

  • Go to Action History to track your Freeze and Run Script requests.

  • Go to Event History to track your Manage Supervisor Password requests and triggered Offline Freeze rules.
Device Details > Event History page

The Event History page in a device's Device Details has been retired.

You can now track a device's actions as follows:

  • Go to the device's Actions page to track its Freeze and Run Script requests.

  • Go to the device's History page to track its Manage Supervisor Password requests and triggered Offline Freeze rules.
Absolute API v2

Version 2 of the Absolute API is no longer supported.

To directly access Absolute functionality and data without using the Secure Endpoint Console, use Absolute API v3.

Improvements and fixes

Absolute 9.2 introduces the following improvements and fixes:

Feature/Area Details
Absolute APIs
  • The Policy Groups resource has been added to the API. Learn more
API management
  • An API token's expiration date now defaults to 90 days instead of 3 months.
  • When an API token is used by a SCIM integration, the token's Last used date is now updated as expected.
Application Health

  • When Microsoft Intune is reported as Unhealthy, the following unhealthy reason may now show: Certificate expired.

  • Application Health now supports the following persisted applications:

    • Avast Antivirus

    • Halcyon Anti Ransomware

    • HP Insights

    • Octopus Desk

    • OneBe TRUST DELETE

    • Secureworks Taegis Agent

    • Syxsense Responder

    • VMWare Carbon Black EDR Sensor
Application Resilience
  • Lanscope An Client

    Application Resilience now supports Lanscope An Client Learn more

  • You can now persist the following application versions:
    • Absolute Secure Access 13.x or higher
    • Blackberry CylancePROTECT 3.1.x or higher
    • BeyondTrust Jump Client 23.3.x or higher
    • Crowdstrike Falcon 7.x or higher
    • Deep Instinct 5.x or higher
    • Dell Trusted Device Agent 6.x or higher
    • F5 Big-IP Edge Client 72.22.x or higher
    • HP Insights (formerly HP TechPulse) 5.x or higher
    • Symantec DLP 16.x or higher
    • Syxsense Responder 24.8.x or higher
    • VMware Carbon Black Cloud 4.x or higher
    • FortiClient Fabric Agent 7.x or higher
  • The Do not reinstall or upgrade if the app is already installed option is now available when you’re configuring the Report, repair, and reinstall option for the following applications:

    • BeyondTrust Jump Client

    • SentinelOne

  • The following Application Resilience policies have been updated:
    • Absolute Secure Access

      When configuring the Report, repair, and reinstall option, you can now upload a file containing the Secure Access client settings to apply during reinstallation. Learn more

    • Dell Trusted Device

      In the console, all instances of Dell Trusted Device Agent have been changed to Dell Trusted Device.

    • F5 Big-IP Edge Client

      The version format xx.xx.* (such as 72.22.*) is now supported in the Application Resilience policy.

    • FortiClient Fabric Agent

      The Application Resilience policy now checks that the following file is present and signed: Forticlient.exe.

    • HP TechPulse

      In the console, all instances of HP TechPulse have been changed to HP Insights.

    • Microsoft BitLocker

      For BitLocker with standalone MBAM, you can now add installation parameters that correspond to the installer you use.

    • Syxsense Responder

      You can now successfully set the application version to a version that is lower than 22.11.*, such as 22.5.*.

    • Trellix Drive Encryption

      When the Report only option is selected, installer settings are no longer displayed.

  • If a device is manually set to a date and time that is more than 24 hours ahead of the current time, its Application Resilience payloads are now ignored.
Chromebook support

  • Chromebook extension version 2659, which includes some stability improvements, has been released.

  • The following hardware data points are now synced from the Google Admin console:

    • Volume > Free Space

    • Volume > ID

    • Volume > Size
Dates and times
  • The display name of a time zone (for example, Pacific Standard Time) is now shown consistently across the console. Previously, some pages showed GMT+/-<#>, such as GMT+/-8.
Device Usage
  • If a device is manually set to a date and time that is more than 24 hours ahead of the current time, its Device Usage payloads are now ignored.
Geolocation
  • When Google Maps Geolocation is unable to resolve a device's Wi-Fi location, and its IP location is reported instead, the BSSID and SSID of each detected Wi-Fi access point are now included in the event on the device's History page.
Hardware data collection

  • Previously, a Windows device's CPU > Architecture field may have shown a numeric code, such as 9, instead of a valid value, such as x64. This issue is now fixed.
History > Action Requests
  • Clicking Action Requests on the navigation bar when the Action Requests page is already open no longer displays a blank page.
History > Events
  • When you export the Events page, the exported report now includes a Device/Object's details column, which shows additional information about the device or object, such as the device's serial number, or the name of the object that was updated.
  • For events triggered by an Offline Freeze rule, the Summary area now shows one of the following instead of the username of the rule creator:
    • Name of the rule

    • Absolute System

    Also, fields that do not apply to Offline Freeze rules are no longer displayed.
License management
  • Previously, when you exported the Report on Devices page, the report included columns for product licenses that were not in use. To simplify the report, these columns are now excluded.
  • The following default filter has been removed from the Unlicensed devices report: Final license expiration date is empty. The filter is no longer required to ensure that the report shows all unlicensed devices in your account.
Missing devices
  • When all devices in an account are unlicensed, the Missing devices page is no longer accessible using its URL.
  • If a refurbishment center attempts to refurbish a missing device, refurbishment is now blocked and an event is logged.
Reach Scripts
  • After a Reach Script runs on a device, the script parameters are no longer visible in process monitoring tools, such as Task Manager.
  • You can now successfully add a script to the Script Library when a script with the same name already exists in the library.
  • Previously, when the Collect .exe files script ran successfully with a return code of "0", the output file was empty. This issue is now fixed.
  • To inform Administrators that a restart is required after the Change Windows wallpaper script runs on a device, the following note has been added to the script: "A device restart is required for the change to take effect."
  • Previously, the Start Processes with Optional Arguments script failed to run if the specified process path contained a space character. This issue is now fixed.
Reports
  • In addition to showing a checkmark, selected options in a quick filter are now highlighted and bolded.
  • In a device report, repeatedly searching for devices and then switching between map view and the report caused the Search field to stop working. This issue is now fixed.
  • Previously, when deleting a Device Analytics report, the Delete Report confirmation dialog did not close after you clicked Delete. This issue is now fixed.
  • In the Anti-Malware report, if you remove and then add back the Anti-Malware columns, you can now successfully remove the Product name and Version columns.
  • For Offline Freeze rules, the Requester report column in the Device Freeze Status report now shows the rule name instead of the username of the user that created the rule.
Rules
  • For Alert rules and Action rules, the subject line of each email notification now includes the device name of the device that triggered the rule. If the device name is not available, one of the following is shown (presented in priority order):
    • Serial number
    • Absolute Identifier
    • Unknown device
  • When you add the Freeze action to an Action rule, the Generate a random code for all devices option is no longer available for selection in the Unfreeze Code section.
Send message
  • In a Send Message request, you can now edit the name of the End User Message template used in the message. The edited name shows when you view the request in Action History.
User Management and permissions
  • The following permissions are no longer applicable. They have been removed from the Permissions page for each role:
    • Insights
    • Event History reports
  • To create or manage Offline Freeze rules, your user role now needs to be assigned the Manage permission for Rules. This permission is required in addition to the Perform permission for Freeze and Remove Freeze. Similarly, the View permission for Rules is now required to view Offline Freeze rules.
  • Following the release of Absolute 9.1, removing a role from a role's manageable roles may have not been applied correctly to the Role assignment field in the Invite user dialog. This issue is now fixed.