What’s new in version 22.8.x
This topic lists the features that are introduced or enhanced in CyberArk EPM in version 22.8.0.
Version 22.8.0
What’s new in this release?
We have added SHA256 support for advanced application policies on all platforms. For details, see Application policies.
You can now define advance AD users and groups conditions in 'Collection mode' for policies that target Windows endpoints. For details, see Create a policy.
We have added the following functionality for macOS agents:
-
You can now implement the Block unhandled applications default policy on macOS agents. For details, see Block unhandled applications.
-
You can specify custom software distributors in trust policies for macOS agents. For details, see Trust policies.
EPM for Linux is now supported on the following platforms:
-
SUSE Linux Enterprise 12 and 15
-
CentOS 7
For a full list of supported platforms, see System requirements for EPM agents on Linux.
-
Security and performance enhancements on the EPM service.
-
We've updated our security best practices. For details, see Security best practices.
Bug fixes
Who should install this version
CyberArk recommends that all customers upgrade CyberArk Endpoint Privilege Manager agents to v22.8.0.
Before upgrading the Linux agent from any Linux version lower than v22.6 to this version, uninstall the current Linux agent and then install the new version.
Behavior changes
|
ID |
Component |
Area |
Description |
|---|---|---|---|
|
1. |
Linux agent |
Installation |
The installation process was slightly changed, so the activation and de-activation is now done using epmcli instead of epm-activate and epm-deactivate. For details, see Install/upgrade EPM agents on Linux endpoints. |
|
2. |
macOS agent |
Policy priority |
The Elevate default policy for macOS is now inherently an Allow policy and works according to policy priority. In previous agents, the Elevate policy didn't preempt other policies, regardless of its priority. Make sure that none of the Block policies for applications are configured with a lower priority than the Elevate policy. In these cases, the application will be allowed to run and elevated, as it has a higher priority. |
Bug fixes
You can see a list of the bugs fixes in this release, online in our community.
|
|
To make your search easier, you can filter by product, component, status, and affected version. If you have not yet registered for the community, log into the community for self-registration using the following links: |
Known issues
You can see a list of the known issues, online in our community.
Previous versions
Links to lists of bug fixes and known issues for versions 21.4 and lower no longer work. To see a list of the known issues in these releases, log into our community, then apply the appropriate filters.
