Absolute 7.22 Release Notes

This topic describes the software changes included in Absolute 7.22. It also describes the changes included in all hotfixes since the release of Absolute 7.21.

This release introduces performance, security, data integrity, and usability improvements that enhance the responsiveness, reliability, and ease of use of the system. It also introduces enhancements, improvements, and fixes to existing features and functionality.

To view the software changes introduced in this release that apply to the Absolute agent, see the Absolute agent release notes: Version 7.22.

NOTE  Depending on the Absolute product licenses associated with your account, some of the following features, enhancements, and fixes may not be available to you.

Features and enhancements

Retired features

Absolute has retired the following features:



Single Sign-On using SHA1 Support for SHA1 hash algorithms and RSA-SHA1 signing algorithms ended in January 2023. Single Sign-On continues to support SAML 2.0 requests and responses that use SHA256 hash algorithms with RSA-SHA256 signing algorithms.
Data Delete In the Settings area, the Data Delete link and the Data Delete Summary Report are no longer available. Use Delete File or Wipe to delete files from your devices.
Classic Activation report The Classic Activation report is now retired. To view information about the devices that have completed a first check-in to the Absolute Monitoring Center, go to the Reports area and view the Activation report.
Classic SCCM Status Reporting and Repair The Classic SCCM Status Reporting and Repair feature and its associated reports are now retired. To report on and repair the SCCM clients installed on your Windows devices, activate the Application Resilience policy for Microsoft SCCM.

Classic Agent Management page

The link to the Classic Agent Management page has been removed from the main Agent Management page. Use the updated Agent Management area to download the Absolute agent.

Classic Investigations Contact List The link to the Investigations Contact List has been removed from the Settings area. To access and manage your contact list, go to the new Investigation Report Contacts page.

File List

The File List Summary Report link has been removed from the Settings area and the File List feature is now retired. To get a list of the files stored on a device, use the new Reach script named Retrieve a list of files from a device.

Learn more about running a Reach script

File Retrieval

The File Retrieval Summary Report link has been removed from the Settings area and the File Retrieval feature is now retired. To retrieve files from a device, use one of the new Reach scripts:

  • Upload files to Dropbox
  • Upload files to FTP server
  • Upload files to network shared folder

Learn more about running a Reach script

Improvements and fixes

Absolute 7.22 introduces the following improvements and fixes:




Application Resilience
  • Previously, for some errors that occurred while uploading an Application Resilience file, the error message was generic. The errors messages are now more detailed.

  • The scan frequency for the latest version of all supported applications has increased from every six hours to every 15 minutes. The upload frequency has increased from every 24 hours to every six hours.

  • In some cases, when the installer failed to download for some applications, the status details would incorrectly show that a restart was required to complete the reinstallation. This issue is now fixed.

  • The Application Resilience widgets and reports now use Last App Resilience scan The date and time the Application Resilience (RAR) component of the Absolute agent last ran a status check on the device. instead of Last connected The date and time when a device's Absolute agent last checked in to the Absolute Monitoring Center..

  • Devices in a policy group that had an Application Resilience policy activated for FortClient Fabric Agent were rebooting every 15 minutes. This issue is now fixed.

  • In some cases, when a change was made to an Application Resilience policy, the new policy was not always applied to devices. This issue is now fixed.

  • The following Application Resilience policies have now been updated:

    • Absolute Secure Access

      Policies for NetMotion Mobility have been renamed Absolute Secure Access. The RAR component now checks for either Absolute Secure Access services and drivers, or NetMotion Mobility services and drivers.

    • Cisco Secure Endpoint

      Policies for Cisco Secure Endpoint (formerly Cisco AMP) now check for both Cisco Systems, Inc. and CISCO SYSTEMS CANADA CO as signers for the services being monitored for health checks.

    • Cortex XDR

      If policies for Cortex XDR have Supervisor password configured, and the RAR component can find Cytool on the device, attempts to repair and reinstall Cortex XDR on the device use Cytool. If the Supervisor password isn't configured correctly, or Cytool cannot be located on the device, the RAR component attempts to repair and reinstall Cortex XDR.

    • FireEye Endpoint Agent

      Policies for FireEye Endpoint Agent now check for both Fire Eye and FireEye, Inc. as signers for the services being monitored for health checks.

    • GlobalProtect

      Policies for GlobalProtect now allow you to enter optional command-line parameters.

    • Lightspeed Smart Agent

      Policies for Lightspeed Smart Agent now check for both LIGHTSPEED SYSTEMS and LIGHTSPEED SYSTEM, INC. as signers for the services being monitored for health checks.

    • ManageEngine Desktop Central

      Policies for ManageEngine Desktop Central can now be configured so ManageEngine UEMS - Remote Control (dcrdservice.exe) is optional and is only used in health checks if it is selected in the policy configuration.

      NOTE  The ManageEngine UEMS - Remote Control service may also be known as ManageEngine Desktop Central - Remote Control, depending on the version.

    • Microsoft® SCCM

      The RAR component no longer checks to see if the SMS Agent Host (ccmexec) service is running if SCCM is using Task Sequence.

      NOTE  If your account is not configured to receive automatic agent upgrades, you’ll need to assign agent version to your policy groups to apply this change to your devices.

    • Zscaler Client Connector

      Policies for Zscaler Client Connector now support both 64-bit and 32-bit installers.


  • Password resets are now more secure.
Chromebook support
  • All customers using Classic Chromebook have now been migrated to Absolute 7 Chromebooks. Settings > Classic Account Settings > Chromebook - Google Accounts has been removed for all accounts. You can now find your Chromebook account information in Settings > Chromebook Settings.

    Learn more

  • The Chromebook extension now supports Manifest V3.

    NOTE  A pop-up will appear when geolocation data is collected. This is expected behavior.


  • The following labels in the Dark Devices widget have been updated:

    • The label Devices is now Trend over
    • The label Not checked in for 30 days or more is now Currently Dark
  • The Application Health widget has been renamed Application Resilience.

Device Details

Device groups

  • In some rare cases, devices that met the filter criteria for a smart device group may have failed to be included in the group. This issue is now fixed.
  • You can now select all the devices in a device group even if there are more than 10,000 devices in the group. This allows you to perform a device action on all of the devices.

    NOTE  Although you can select all devices, some device actions are limited to a maximum number of devices.

  • When adding filters to create a smart device group, you can now filter by any of your account's Custom Data fields.

File Delete
  • The log file is now available for download for all Delete File requests with a status of Completed.

  • In some cases, the status of a Delete File request was not updated from Processing to Completed after the applicable files were deleted from the device. This issue is now fixed.

History > Actions
  • When viewing a Device Action request that includes a long description (up to 255 characters), the description is now truncated. Users can view the full description in a tooltip.


  • All maps shown in dashboard widgets, such as the Device Count & Map widget, now use Kibana's Maps feature. For more information about working with Maps, refer to Kibana documentation.
  • The Dark Devices (No contact for 7 Days) widget has been removed from the Executive Summary dashboard.


  • After cloning a theft report, you can now use the search field in the cloned report to successfully search for a device.
  • Messages are now displayed on devices that are accessed using a remote connection.
  • When a user includes an email address in a message response, the system now validates that the email address does not exceed 250 characters.
  • To make it easier to work with messages, the following toolbar now shows when you hover over a message:

    Click the applicable icon to Edit, Copy, or Delete the message.

Reach Scripts
  • The Delete Aged User Profiles script has been updated to add more exit codes and to improve the script description.


  • Previously, when saving a report with a Custom Field filter, the filter was not applied to the saved report and a Custom Field removed error was displayed. This issue is now fixed.
  • When a Windows device connected to an external power source, the Battery > Estimated runtime column showed a value of 71582788. This column now shows Plugged in. Note that this column is empty when it's exported.
  • You can now sort report results by Local IP address and Public IP address.
  • The within last and not within last filter conditions have been updated to use exact values. For example, specifying within last 2 days will now show the last 48 hours of results, not today's results plus the previous 2 days.


  • To create a new rule, you can now click the Create icon on the console's quick access toolbar and then click Rule. Note that the Alert link is no longer available in the Create menu.
  • When creating a custom rule with the event condition set to is or contains, you can now specify multiple values in the value field. In this case, the event is triggered when any of the values are included in the event record.
  • To make it easier to work with rules, the following toolbar now shows when you hover over a rule:

    Click the applicable icon to Edit, Copy, or Delete the rule.

User Management and permissions

  • The date and time when a user last logged in to the Absolute console is now shown on the User Management page in Users, and on the Assigned Users page in Roles.

  • Previously, View and Manage permissions for Insights could not be assigned to some older custom roles. This issue is now fixed. If an Absolute Insights license is associated with your account, these permissions are now available for selection on the Define Role and Permissions page for all custom roles.

  • When creating a custom role, assigning View permissions for Remove Freeze now automatically assigns Perform permissions, and vice versa. As a result of this change, your user role now needs to be assigned Perform permissions to view the Device Freeze Status report, not just View permissions. System Administrators, Security Administrators, and Security Power Users are granted these permissions.