Remote Support 25.2 release notes
September 9, 2025
This release introduces a range of security-forward enhancements and experience improvements to Remote Support.
🔥 Spotlight new features
Launch support sessions in an elevated state
Support Buttons are receiving some significant changes. You are able to launch support sessions in an elevated state from a support button where a support profile is created and then assigned to a Jump Client. Support Buttons are now a feature of Jump Clients.
For more information, see Deploy a Jump Client with a Support button enabled.
Endpoint automation API support
Endpoint automation makes it easy to run scripts on multiple devices at once—no need to start a support session. It’s a great way to speed up routine tasks and boost efficiency.
With automation, manage all your systems more smoothly, cut down on manual work, and ensure everything stays updated and consistent across the board.
The endpoint automation feature is only available to service mode Jump Clients with an active connection on Mac, Windows, or Desktop Linux.
For more information, see Endpoint automation API support.
Added Endpoint automation roles
Assign users the right level of access to endpoint automation based on what they need to do.
- Not Allowed: The Endpoint Automation tab is hidden.
- User: Create automation jobs but with some limits.
- Administrator: Full access to create jobs, script templates, and resources.
Access automation roles under Representative Permissions when you add a new user or edit an existing user on the Users & Security > Users page.
For more information, see Roles for Endpoint Automation.
Vault now supports Amazon Web Services (AWS) and Password Safe discovery
You can use the Discovery feature to easily find AWS Secrets stored in AWS Secrets Manager, making it simpler to bring everything together in one secure place.
For information, see Discovery of AWS Secrets.
In Password Safe:
Vault discovers and imports Managed Accounts and Managed Systems from your Password Safe instance.
For information, see Discovery of Password Safe.
Duplicate Jump Clients reporting
You’ll find a new report under Reports > Duplicate Jump Clients that shows how many duplicate Jump Clients are in your environment—making it easier to keep things organized.
For information, see Duplicate Jump Clients reports.
🆕 New features
Wayland display server support
You can now take advantage of these Wayland features:
- Mouse and keyboard functionality
- Screen sharing in view-only mode
You still need X Server for Wayland to run properly. A fully standalone Wayland setup isn't supported at this time.
For more information, see Wayland support.
Auto start sessions
You can now mark a set of Jump Items to automatically start sessions immediately after you log in to the Console.
For more information, see Sessions to automatically start.
Turn on edit permissions automatically when creating Jump Item Roles
When you set up a Jump Item Role and check the Create new Jump Items or upgrade Jump Clients box, all "edit" permissions under the Jump Items section are turned on automatically. You'll see this message letting you know:
The "Create Jump Items" permission grants broad creation privileges, including the ability to set all fields on items during creation. This permission should be granted to trusted users only.
For more information, see Add a Jump Item Role.
Jump Clients display on Status page
You can now view the following details on the Status page:
- Number of Jump Clients in use
For more information, see Status.
Manage duplicate Jump Clients
We've made some updates to make it easier to manage duplicate Jump Clients:
- You’ll now see a warning dialog box when duplicates are detected, so you can take action right away.
- The Jump Group field is no longer automatically filled with the default group—giving you more flexibility to choose the right one for each client.
For more information, see Maintenance of duplicate Jump Clients.
Jump Zone Proxy chaining
Jump Zone Proxies can now be set up to connect to other Jump Zone Proxies. This lets you reach endpoints in target networks through multiple layers, using connected Jumpoints to bridge the gaps.
For more information, see Configure multiple outbound Jumpoint proxies.
OIDC as new service provider
OpenID Connect (OIDC) is now supported as an identity authentication protocol. From the Users & Security > Security Provider page, you can select OpenID Connect to configure a new service provider.
For more information, see OpenID Connect.
Session credential column
Added the Credential column to easily see the name of the active credential being used in a session.
The Credential field is included in audits to help track which credentials are used and to create a clear audit trail.
Available on the Web Rep Console and Desktop Representative Console.
For more information, see Credential column in console.
✨ Enhancements
Dashboard enhancements
We’ve made a few improvements to make the Dashboard clearer and easier to use:
- Updated the description to better explain what the Dashboard is for.
- Added a warning to copy your access keys before leaving the page.
- Renamed some table fields for clarity:
- Access Key Name and Access Key Value.
- Current Sessions to Active Sessions.
- Order of available/logged to Available/Logged In.
For information, see Add or edit a dashboard.
Jump Client installer usage
Added installer parameters for Linux and headless deployments: scope, user, headless, and online-install.
The silent parameter for Linux has been removed.
For more information, see Install a Linux Jump Client.
Jump Group auto refresh
When a Jump Group is created or a user is added to a Jump Group or Jumpoint, the Rep Console automatically refreshes to show the updated access state.
For information, see Use Jump Items to support remote systems.
New settings for outbound events
The following new settings have been added to outbound events:
- Jumpoint is online
- Jumpoint is offline
For more information, see Add or edit HTTP recipient.
Configure email using default email gateway (Cloud and Pathfinder only)
Important info
This feature is not available for Remote Support on-premises.
You can now use settings from a BeyondTrust hosted email gateway, there is no need to manually enter SMTP Relay Server details.
Go to Management > Email Configuration, and select Use BeyondTrust Remote Support default email gateway.
For more information, see Use hosted email settings.
User interface refresh
Updated styling with a more modern color palette to improve accessibility through better font contrast and color choices.
Updated audio notifications in Web and Desktop Consoles
The default audio notification files have been updated. The filenames remain the same.
⏰ Deprecation notices
- Removed all references to the deprecated Presentation feature.
- Replaced all references to "Bomgar" with "sra" in folder names, MSI files, and EXE files where applicable.
⛔ Known Issues
| Product Area | Description | Resolution |
|---|---|---|
| Jump Client | License information being displayed incorrectly. | Patch HELP-11765 fixes an issue where standby client settings and license information were not displaying properly. The patch is available in the Check for updates interface after 25.2.1 is installed. Cloud sites will have the patch automatically installed shortly after a 25.2.1 upgrade. Successful installation of the patch can be confirmed in the Installed Patches section in the /login interface. |
🛠️ Issues resolved
| Product Area | Description | Resolution |
|---|---|---|
| Vault | Authentication of an endpoint system does not correctly identify Microsoft Entra ID | Authentication to a system with Microsoft Entra ID is correctly identified. |
| Vault | When you delete Jump Items associated with a Vault Account that exceeds 50, it does not update the number of Jump Items to be associated with that Vault Account. | The limit value works as expected. |
| Security Providers | When you configure LDAP by using the Enable LDAP object cache permission, it may give inconsistent results. | The Enable LDAP object cache works as expected. |
| Atlas | System Network address prefixes disappeared on new traffic nodes | System network address appear correctly. |
| Rep Console | The Default Public Portal does not display at the top of the list when inviting an External Rep. | The default public portal works as expected. |
| Rep Console | On a Mac computer, the Rep Console closes unexpectedly when the Invite External User window is open. | The Rep Console works as expected. |
| Rep Console | The End Session window does not scale properly when viewed on higher resolution monitors. | The End Session window displays correctly. |
| Rep Console | When you use a Croatian keyboard the @ symbol (AltGr+v) does not work at the Windows login screen. | The AltGr+v combination works as expected. |
| Rep Console | When UAC prompts are set to require credentials, those credentials override the credentials for mid-session elevation. | UAC permissions works as expected. |
| Rep Console | You are unable to copy and paste within a session. | The copy and paste function work as expected. |
| Rep Console | When you enable the Blink Cursor option in Shell Settings and the Rep/User starts a Command Shell, the cursor does not blink. | The Blink Cursor settings works as expected. |
| Rep Console | You are unable to copy and paste between two applications on the endpoint system. | The copy and paste function work as expected. |
| Rep Console | The URL in the Support Session key Generated window does not work. | The URL works as expected. |
| Customer Client | The prompt for permissions does not disappear after it expires. | The prompt works as expected and disappears. |
| Customer Client | Application Sharing does not work as expected when switching from View Only Screen Sharing mode. | Application sharing was as expected. |
| Web Rep Console | When you use large usernames or comments, a blank External Rep Invite URLs is created. | Rep invite URLS work as expected. |
| Web Rep Console | The Shift Key does not work in Chrome OS in a Webrep Remote RDP session. | The Shift key works as expected. |
| Web Rep Console | When you use an RDP session, a black screen sometime displays. | RDP sessions work as expected. |
| Click-to-Chat | The Click-To-Chat Screen Sharing in Safari 18.4 does not work as expected. | Click-To-Chat Screen Sharing in Safari 18.4 is disabled. |
| Jump Client | If you log into a Kiosk Windows computer, the session starts slowly. | The sessions work as expected. |
| Jump Client | The Shell tab shows as active in Shell Jump session when Shell is set to Deny in Session Policy. | The Shell Jump permissions are now similar to Privileged Remote Access Shell Jump permissions. |
| Mac | On a Mac 15 endpoint, the Jump client stat thumbnail is blacked. No endpoint image is present. | The Jump Client stat thumbnail works as expected. |
| Mac | The Force immediate reboot check box is in the wrong location on the Reboot Confirmation window on Macs. | The Force immediate reboot check box is in the correct location. |
| Mac | The Rep Console changes multiple times after the Console window is maximized and then minimized. | The Rep Console window behavior works as expected. |
| Mac | The Ctrl + Tab combination in the Rep Console to Windows endpoints does not work correctly. | The Ctrl + Tab combination sent from Mac Rep Console to Windows endpoints works correctly. |
| Mac | When you start a session, the dock icon shows even though the session was supposed to be started as hidden. | The dock icon does not display. |
| Linux | Keyboard mapping does not work correctly when jumping to an Ubuntu 20.04 jump client. | The keyboard mapping works correctly. |
| Linux | When you install a Jump Client on Linux system, it displays errors even though the Jump Client installed correctly. | The installation of a Jump Client works as expected. |
| Miscellaneous | When an administrator signs in to the site for the first time, the EULA screen only shows in the Cloud version. | The EULA screen shows for all versions. |
⛔ Known issues
| Product Area | Description | Resolution |
|---|---|---|
| Jump Client | Standby option does not display in Cloud sites. | Patch HELP-11765 fixes an issue where standby client settings and license information were not displaying properly. The patch is available in the Check for updates interface after 25.2.1 is installed. Cloud sites will have the patch automatically installed shortly after a 25.2.1 upgrade. Successful installation of the patch can be confirmed in the Installed Patches section in the /login interface. |
📝 Requirements
- Requires Base 8.0.
- Supports ECM Protocol 1.6.
- Supports upgrades from RS 24.2.4+.
- Validated with ECM 1.6.4.
- Validated with Integration Client 25.1.1
- Includes VSC 1.2.10.2.
- Before upgrading, ensure any SSL certificates used are either from a trusted Certificate Authority, or, for self-signed certificates, the certificate is either trusted on all endpoints or explicitly included in their installation.
