Skip to content

Release notes for the February, 1 2026 update

Update Version 4.1.202601301626

New Features

Added the option to filter and control commands executed in active SSH sessions established by native clients.

Command filter option allows precise control over which shell or terminal commands are permitted or denied during a secure remote session established by native desktop of mobile client. In addition, the option ensures that only trusted binaries from approved directories are executed.

The option extends previously available Command filter support for WEB SSH Sessions to the sessions established by native desktop of mobile clients.

Command filter option for native desktop or mobile clients supports two command shell options:

  • Native Shell proxies original OS shell environment monitoring traffic to restrict operations.

  • Application Shell further restricts administrator actions on the remote device by locking the user in the artificial proxy shell bypassing allowed processed commands.

Both shell options support fundamental PAM functionality such as credential injection, session recording and playback, session events recording, RBAC, access request approvals, etc.

Added Access Wall option to restrict direct access to asset endpoints.

Access Wall enforces PAM-only access for Unix SSH and Windows RDP/PowerShell endpoints, preventing bypassing PAM controls and preventing lateral movement across the network.

Extensions

  • Added the option to select Access port type in the network service configuration to use the SSH, RDP or WinRM port number as defined in the asset configuration. The option allows to reuse asset port numbers for access, account management and endpoint isolation purposes.

  • Added [Component :: Server :: Unix] and [Application :: Access Wall] terms to the out of the box LECA Segmentation taxonomy to support Access Wall functionality.

  • Added support to Azul distribution of the server side run time framework.

  • Added secret Token field to Kubernetes asset type to support upcoming discovery and account management operations.

Security

  • Updated server side run time framework to the major version 25 LTS.

  • Updated application security provider to the latest version.

  • Updated WEB application framework to the latest version.

  • Updated server side REST API component to the latest version.

  • Updated Application WEB Container to the latest version.

  • Updated database access component to the latest version.

  • Updated SSH connection component to the latest version.

  • Updated MySQL driver to the latest version.

Fixes

  • Fixed the issue with the license activation screen remains in the modified state after license activated.

  • Fixed the issue with the application dashboard displaying statistic charts for the editions that do not include Microsegmentation module.

  • Fixed the issue with segmentation policy Preview option available in Microsegmentation only editions on Asset List, Edit and View screens.

  • Fixed the issue with creating new Choice fields and defining the its options at the same time.

  • Fixed the issue with the control box size on the session player screen.

  • Fixed the issue with displaying long metadata lists when expanding asset item details on the list of items across the application screens such as asset or asset type lists.

  • Fixed the issue with out of the box special characters list for tenants created in non-English languages.