DocumentationAPI ReferenceRelease Notes
Log In
Release Notes
Back to All

BT PM App & BT ePO Extension 25.2 release notes

about 2 months ago

February 25, 2025

BeyondTrust Privilege Management ePO Extension 25.2 (Unsigned)

Enhancements

Incorporates policy support for client features up to and including 25.2.

BeyondTrust Privilege Management App 25.2

Policy Editor Enhancements

Messages workflow improvements

Improved the workflow for create messages by directing users to the edit screen of create of a new Windows or macOS message

Bulk update actions: Workstyles (Windows)

Can now select more than one workstyle to bulk update Windows and macOS Workstyles on the Workstyle page. Includes updates for enable/disable workstyles, priority setting, and enable/disable JIT Admin.

Policy Assistant

Added a count to the Policy Assistant menu item to highlight how many potential policy issues the Policy Assistant has identified.

User preferences

Added User Preferences to Utilities to customize the look and feel of the Policy Editor menu based on font size and margin size, providing customizable accessibility benefits dependent on each individual users needs.

Messages previews

Improved the message previews to more accurately reflect the user experience on the endpoint.

Updated Windows and macOS.

Policy Assistant

Policy Assistant is now accessible from the Policy Editor menu and applies more in-depth checks to policy.

Windows Hello and Touch ID

Can configure Windows Hello and Touch ID without a password.

  • Configure Windows messages with Windows Hello without requiring password.
  • Configure macOS messages with Touch ID without requiring password. Additionally, TouchID authentication is now integrated into EPM-M messages.

Requirements:

  • BT ePO extension 25.2
  • EPM for Windows 24.8+
  • EPM for Mac 24.8+

Issues resolved

BeyondTrust Privilege Management App
DescriptionResolution
Policy with languages containing special characters are replaced with "?"Any languages with special characters (i.e. accented) are not replaced when inputted in policy (for example, messages)
Agent protection in the app is exporting Private Key as null.The Agent Protection Private Key is now displayed correctly and not set to Null when exported.
Policy Editor
DescriptionResolution
Inaccurate description of UAC causing confusion for usersThe description of UAC when added to a Windows application definition is described accurately.
Policy Search - Cannot edit an application definition when navigating back after using breadcrumbsAn application definition accessed via the Policy Search is now editable after navigating back to the Application Group via the breadcrumb.
Issue with special chars when exporting policyOn policy export a policy XML file name displays correctly when containing special characters.
Copied Application Group should get pasted with another App Group if it was assigned as a parent/child process matcher for the app inside the copied App Group.Referenced application groups are now also copied with the copied Application Group.
Delete App Groups - Show warning modal if app group is used by another app group.A warning modal listing all impacted application definitions now displays to users when attempting to delete an app group that has an application definition that uses another app group as parent or child process.
Built-In template displays some users as groups.Updated four local AD Built-in templates to classify users correctly (not as groups) when added to a Windows filter.
Request App Rule icon disappears/doesn't appear when conducting actions in the pageThe Request icon is now always visible when viewing the Application Rule page for both Windows and macOS.
Application Groups used as a parent/child process matcher for the copied App should be included in the copy action with the app.When a user copies applications or application groups that use other application groups as parent/child process, those application groups are also included in the copy action.
There is a content overlay on the Audit Script → Upload Script window.Can now select Infinite from the Timeout Options dropdown when configuring audit scripts.
Rule scripts .ps1 AND settings.json file validation is too strict and/or not informative enough.Validation no longer triggers when rule scripts .ps1 AND settings.json file names contain uppercase values.

EPM Components

  • BT ePO extension 25.2.5
  • BeyondTrust Privilege Management App 25.2.21
  • PM Reporting Database 24.3.2

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.