Absolute 7.14 Release Notes

This topic describes the software changes included in Absolute 7.14. It also describes the changes included in all hotfixes since the release of Absolute 7.13.

This release introduces performance, security, data integrity, and usability improvements that enhance the responsiveness, reliability, and ease of use of the system. It also introduces enhancements, improvements, and fixes to existing features and functionality.

To view the software changes introduced in this release that apply to the Absolute agent, see the Absolute agent release notes: Version 7.14.

NOTE  Depending on the Absolute product licenses associated with your account, some of the following software changes may not be available to you.

Features and enhancements

  • Reporting of installed applications (New!)

    • You can now view the list of applications that are installed on your Windows and Mac devices. Activate the Installed Software policy to start collecting the following information about each application:

    • Application name
    • Application version
    • Publisher
    • Date installed
    • Install location

    After the policy is activated and your devices are scanned, you can view the collected information on the Applications page in the Assets area, and on the Applications page for each device.

    NOTE  The Installed Software policy and Applications pages will be added to your account shortly after the release of Absolute 7.14. At that time, you will be notified with an announcement when you log in to the Absolute console.

  • Application Persistence enhancements

    • Application Persistence policies, which collect information about the functional status of third party applications installed on your Windows devices, now support persistence of the following third-party applications:

    • You can now persist the following application versions:

      • Cisco AnyConnect® Secure Mobility version 4.9.x
      • Ivanti® Endpoint Manager version 11.0.x
      • WinMagic SecureDoc™ version 8.x
    • The Application Persistence categories have been updated. Applications are now classified under the following categories:
      • Data Protection
      • Endpoint Management
      • Endpoint Protection
      • VPN

  • Reach Script enhancements (New!)

    You can now use a device's Device Details page to cancel all script requests on the device that have an Event Status of Script Requested. Learn more

  • Web Usage support

    • The Absolute Resilience product now includes Web Usage. If this product is associated with your account, you can activate the Web Usage policy to start collecting information about the websites and webpages that your users visited most recently using the Chrome browser on a Chromebook or Windows device. Learn more

    After the policy is activated, you can view your devices' web usage in the following reports:

  • Mac support
    • The (classic) Mac agent has been upgraded to support some recent application security enhancements introduced by Apple. The new agent (version 976) is included in version 7.14 of the Absolute agent. If your account is configured to receive automatic upgrades, your Mac devices will automatically upgrade to version 7.14. You can also download this new agent version from the Agent Management page in the Settings area.
    • The Absolute agent is now supported on devices running macOS 11. Ensure that you install agent version 7.14 or higher on these devices.

      • NOTE  The Data Delete security action is not supported on macOS 10.15 or 11. If you currently use Data Delete to protect your devices, we recommend using macOS 10.13 or 10.14.

Improvements and fixes

Absolute 7.14 introduces the following improvements and fixes:

Feature/Area

Improvements and fixes
Absolute agent
  • Previously some supported anti-malware products, including McAfee VirusScan Enterprise, flagged the Absolute agent library files (.dll) in C:\Windows\Temp as trojans. This issue is now fixed.
  • If deep packet inspection is detected on port 443, the CTES component will now use port 11364 to communicate with the Absolute Monitoring Center.
Alerts
  • You can now successfully create or edit an alert based on a geofence when the alert is associated with a large device group and none of the devices are stolen.
Anti-Malware
  • For a Mac device, if an Anti-Malware product is installed on an unmountable boot volume, the product is now detected and shows in the Absolute console.

Android support

  • An issue, which occasionally caused Android devices to stop connecting to the Absolute Monitoring Center, is now resolved.
Application Persistence
  • SentinelOne version 3.x no longer runs health checks when Report higher version as Compliant is selected.
  • Previously, an application's most recent health check information may not have been available in the Absolute console. This issue is now fixed.
  • If a newly activated Application Persistence policy initially fails to be downloaded to a device, the device's agent now keeps trying until the download is successful.
Authentication
  • When your attempt to log in to the console fails due to a certificate or configuration error, a Login Failed error message now shows instead of a 404 error message about a missing font.
  • If you click the browser's Back button after you submit a request to reset your password, you are now redirected to the login page.
Browser support
  • A number of enhancements have been introduced to the appearance and functionality of the Absolute console on Internet Explorer 11 and Microsoft Edge.
Dashboard
  • While you're waiting for the Dashboard to load, a page level animation no longer obscures the entire console, preventing you from navigating to another page.

Device groups

  • After a device group is deleted, it is no longer available for selection in a field that shows a list of device groups, such as in report filters or a widget's Advanced Settings.
Dynamic Group to IP Mapping
  • When a device is moved from one device group to another by (Classic) Dynamic Group to IP Mapping, the device is now removed from its original group, as expected.
Email services
  • In some cases, system generated emails were not being sent. This has been fixed.
Endpoint Data Discovery (EDD)
  • For devices that support OneDrive Files On-Demand, the OneDrive folder and its downloaded files are now included in an EDD scan. Note that online-only files are not downloaded or scanned.
  • When you create a new EDD rule, the rule name now defaults to "New Rule - <timestamp>", where <timestamp> is in the format yyyy-mm-dd hh:mm:ss.sss. For example, New Rule - 2020-09-23 14:45:15.321.
  • When a file owner's name includes non-ASCII characters, any matches detected in the file during an EDD scan are now processed correctly.
  • EDD scans running on macOS 10.15 devices no longer cause a spike in CPU usage and the scan is now completed as expected.
Freeze

(Absolute 7 version)

  • If NoMAD is being used for single sign-on, you can now successfully unfreeze a frozen device.
  • In the Settings > Device Freeze Messages area, the username of the user who created the message now shows under the message title on the sidebar instead of the message's internal identifier.
  • If any of the following SSH applications are detected on a Windows device, the applications are now blocked during the Freeze process to prevent remote connections to the frozen device:
    • Bitvise SSH Server
    • CopSSH
    • FileZilla Server
    • FreeSSHd
    • ICW OpenSSH Server
    • KpyM SSH Server
    • OpenSSH for Win7 and Win8

Hardware data collection

  • Previously, if a hardware scan occurred on a Mac mini device when a user was remotely logged in to the device, the user's username was not reported. This issue is now fixed.
  • If a Mac device's reported username was previously blank, the current username is now detected in the most recent hardware scan.
  • To address an issue, the following columns and filters are no longer available in reports:
    • HD > Free space (bytes)
    • HD > Size (bytes)

    Note that these items will be made available again in a future release.

History

On the History > Events page:

  • The following events are now logged:
    • Missing device checked in
    • Theft report created
    • Theft report updated
  • For theft report events, click the report ID in the Summary column to view the theft report.
  • Events related to Application Persistence are now prefixed with "App persistence" instead of "AP".
  • The old and new values for an App persistence policy change event are now grouped in a new property called Configuration.
  • A icon now shows in the Summary column to indicate that a link will navigate you away from the Events page to open a new console page.
  • The old and new values for a hardware update event now show in the Summary column.

On the History > Actions page:

  • You can filter Run Script requests by Return Code.
  • A number of enhancements have been introduced to Action History to improve usability.
Identifier reassignment
  • When the motherboard is replaced on a Lenovo device, the device is no longer assigned a new Absolute Identifier if no other hardware identifiers have changed.
Interface Usability
  • As you adjust the size and/or resolution of your browser window, all Device Action options remain available either as individual buttons or in the menu.
  • If you close the Show/Hide columns dialog and then reopen it, the OK button is now grayed out until you update the availability of a column.
  • When you select devices on a page or report, the Report Options () icon is now hidden and the number of selected devices shows in its place. Also, if you select the All Devices check box, a Clear all link is now available.
Investigations
  • A Closed Date column has been added to the Reported Stolen view of the Assets > Devices page.
  • You can no longer create a theft report for devices that are in the Unlicensed Policy Group. Move the device to a policy group with available licenses to continue.
  • When creating a theft report, the When did the incident occur? section now:
    • automatically sets the time zone to match the time zone in User Preferences.
    • warns you if you try to select an incident time that occurs in the future.
  • Improved error messaging has been added when there is a failure creating a theft report.
Manage Supervisor Password
  • You can now use Absolute's Manage Supervisor Password feature to remotely manage the firmware supervisor password on a Lenovo ThinkCentre device.

Network Diagnostics Tool

  • The Network Diagnostics Tool, which is designed to check the Absolute agent's connectivity to the Absolute Monitoring Center, no longer checks the connection to the Absolute console. You can test this connection using a web browser.
Policy groups
  • Previously, a Freeze permissions error may have occurred when you attempted to move devices between policy groups. This issue is now fixed.

Reports

 
  • When you edit a report schedule, the date of the next scheduled report now shows under the Recurrences field.
  • On the Schedule report dialog, if you enter an email address in an invalid format, the Scheduled Report request no longer fails. Instead, an Invalid email error message now shows when you click Save allowing you to edit the email address.
  • If all product licenses associated with an Absolute account have expired, the system no longer sends email notifications for scheduled reports.
  • If you submit a second request to export the Event History while the first request is being processed, a message now shows to indicate that your previous request is still in progress. Previously, an internal error occurred that disabled the page.
  • To address an issue with out-of-date data, you can no longer add the following columns to a Device Analytics report:
    • Anti-Malware columns
    • EDD > Status
    • Encryption columns

  • You can no longer add the following obsolete columns to a Device Analytics report:

    • geoStatus > calcStatus
    • sccmInfo columns
  • In some cases, pages and reports loaded without the check boxes to select devices. This issue is now fixed.

  • A number of improvements have been introduced to the Search function in reports and pages, including:

    • When adding a column to a report or page, you can now search in the middle of the string. For example, searching for policy now includes Added to policy group in addition to Policy status.
    • Previously, using a date to search for a device caused an error. Searching by a date now returns no results, rather than the error.
  • When you rename a policy group, reports that use the policy group name as a filter are updated correctly.
  • The Current build, Update build revision, and Release ID report fields are now treated as integers to allow users to filter these fields with numeric operators, such as greater than or less than.
  • A number of improvements have been introduced to reports to improve consistency within and between reports.

Reach scripts

  • When you submit a Run Script request for a custom script that includes script variables, the Script Variable fields are now editable.

  • Following the release of Absolute 7.13, new script events were not added to the Event History report or to a device's Event History page in Device Details. This issue is now fixed.

    NOTE  New script events between July 13 and August 13, 2020 are only recorded in Event History and don't appear in the Event History report.
Rules
  • Clicking Save on the Offline Freeze dialog now closes the dialog and returns you to the Rules page.
  • You can now successfully create an Offline Freeze rule even if there are no messages configured in Settings > Device Freeze Messages.
Single Sign-On
  • The Settings > Single Sign-On page now lists the following SAML 2.0 identity providers, which Absolute has validated for single sign-on configuration:
    • Active Directory Federated Services (ADFS)
    • PingFederate
User Management
  • Version Control permissions have been updated. To access the Settings > Agent Management page, your user role now needs to be granted the Manage permission for Version Control.
  • Users with the Guest User role can now only View alert configurations and alert events for devices and device groups assigned to the Guest User role.

Web Usage

  • The Web Usage reports have been renamed to more accurately reflect their purpose and the data they contain:

    • Weekly Web Usage is now Web Usage (Last 7 Days)
    • Rising Web Usage is now Web Usage (Trending)
  • The Web Usage (Last 7 Days)] report has been improved. The Web usage > Total column is now shown by default, and the following column headers have been relabeled to be context agnostic:
    • Web usage > During school is now Web usage > Daytime
    • Web usage > Outside school is now Web usage > Evenings and weekends
  • The usage calculation has been updated to better attribute usage to the correct time period. As a result, values in the Web Usage > Daytime and Web Usage > Evenings and weekends report columns are now more accurate.
  • If web usage is temporarily suspended when a device enters sleep mode, that usage is now attributed to the correct time period, in all cases.
  • When you schedule a Web Usage report, the emailed report now matches the exported version of that report.
  • In Web Usage reports, the username of the logged in user is now reported correctly, in all cases.
Wipe
  • When the BitLocker Group Policy requires a Trusted Platform Module (TPM) PIN and/or key for authentication, the Wipe process no longer fails.

  • If you're using Sophos SafeGuard Encryption to manage BitLocker on your Windows 10 devices, the Sophos Device Encryption Service is now stopped so the device can be successfully wiped.