The latest release of Endpoint Protector (version 2601.0.1.0) brings a series of compelling enhancements and crucial bug fixes designed to improve system performance, user experience, and reliability across environments. This update showcases our commitment to evolving with user needs and operational demands and includes:
- New Features: Enhanced data protection through updated Content Aware Policies (CAP), improved Client and Server interaction, and streamlined processes for client migrations. New file type recognitions for CAP and eDiscovery are introduced, along with language support expansions.
- Bug Fixes: Addressing critical issues such as network share allowlist application, UI language errors, IP configuration persistence on virtual images, audit log download functionality, and effective certificate management on macOS clients. These fixes ensure smoother operations and enhanced compliance capabilities.
- Enhancements: Integration improvements for Single Sign-On (SSO) configurations with Auth0, adjustments to proxy configurations for Linux, and the inclusion of additional predefined content for compliance requirements.
Want the full details? Click the link below!
What’s Changed in Endpoint Protector 26012.1.0
The following components have been updated with this release:
- EPP Server 2601.0.1.0
IMPORTANT: This release is available as a patch to be applied for the previous 2510.0.1.0 release. Please refer to the user manual for detailed instructions on the process. All our Saas customers will receive the patch automatically.
IMPORTANT: This release contains important security fixes. More information on the security content of this release is provided in security advisory ADV-2026-002
Enhanced IPv6 Support for Appliance Networking
With this release, Endpoint Protector introduces comprehensive IPv6 support across appliance management interfaces, bringing your deployment in line with modern networking environments. Administrators can now configure IPv6 network addresses, gateways, and DNS settings directly from both the WebUI and setup console. The appliance can operate in single-stack (IPv4 or IPv6), with robust validation ensuring accurate and compliant configuration for all network parameters.
This update streamlines network setup and ongoing management while providing the flexibility to adapt to evolving IT infrastructures. Certificate generation, service communications, and network templates are now fully IPv6-aware, improving compatibility and security. For enhanced control, switching between IPv4 and IPv6 stacks is now available, with automatic handling of related features such as certificate re-issuance and client connectivity requirements.
Whether your organization is planning a transition to IPv6, is already running IPv6, or requires seamless dual-stack operation, Endpoint Protector now provides the tools and interface to support your needs—helping ensure a future-proof, secure, and scalable data protection platform.
Note: To use IPv6 addresses directly (instead of DNS AAAA records) when connecting to the EPP Server, you will need to upgrade to the upcoming EPP Client versions 2601.x.x.x.
EPP & EE Client migration between EPP Server appliances
This release introduces a streamlined process enabling full migration of EPP and EE Clients between EPP Server appliances. The new feature minimizes administrator interaction by automating migration via the EPP Server interface. Administrators can now set up global settings, assign target servers, and initiate client migrations without relying on external scripts or reinstallations. For MacOS and Linux, manual redeployment of the DPI certificate requires post-migration. Migration events and status are logged for thorough auditing and management.
Note: For EE Client migration, it is mandatory to restore the EPP backup first on new target EPP Server. This ensures that EE Clients can be properly re-registered and reconfigured with all existing configuration details and master passwords.
Adding Netwrix Data Classification labeling usage in CAP & eDiscovery policies
This update introduces the ability to define NDC (Network Data Classification) labels within the EPP Server’s Denylists interface, akin to previously implemented MIP (Microsoft Information Protection) classifications. This enhancement streamlines policy management by allowing labels such as “Confidential” to be easily utilized in CAP (Content Aware Protection) and eDiscovery policies. Administrators can add NDC categories, define label names and descriptions, and select criteria for label detection using keywords or document properties. The improved interface ensures more targeted content control and policy enforcement across EPP environments.
Note: The NDC label interface will require future EPP Client versions 2603.x.x.x or higher for support. In the meantime, customers working with NDC Classification are asked to continue using custom dictionaries until their EPP Clients are updated.
Single Sign-On (SSO) Configuration with Auth0
This update introduces seamless Single Sign-On (SSO) integration with Auth0 for Endpoint Protector, allowing users to access multiple applications securely with one set of login credentials. Administrators can now configure SAML 2.0 Identity Provider settings directly within Endpoint Protector, simplifying the setup process. The integration involves creating and configuring a SAML application in Auth0, enabling SAML2 Web App add-ons, and obtaining necessary SAML values for secure authentication. This feature enhances security, reduces administrative workload, and improves user experience by allowing easy login transitions across systems. Additionally, Auth0’s extensive role and user management features can be utilized for even greater access control and security management. Testing the configuration ensures successful connection and user authentication.
Client Software Upgrade - Improvements
This release aims to enhance flexibility and efficiency by decoupling the Endpoint Protector Client from the EPP Server. The updated interface streamlines client management by removing the requirement to specify OS type and version during client upload; these details are now automatically obtained from the archive name. A new Delete Button is introduced, enabling administrators to remove specific client versions or all clients, facilitating easy re-upload when needed. Deleting a client promptly triggers a confirmation prompt, ensuring administrators are informed that pending upgrade jobs will be canceled. This simplification of client management ensures a more intuitive user experience and reduces overhead, aligning with modern system management practices.
Linux Proxy Loopback Configuration for EPP Client
This update introduces an essential enhancement to the EPP Client for Linux, enabling configuration of proxy loopback addresses for compatibility with VPN solutions like Cisco AnyConnect. Administrators can access this feature in the DPI Configuration section under Device Control -> Global Settings and toggle the Linux Proxy Loopback Address option. By assigning a loopback IP address (commonly within 127.0.0.0/8), the system can accommodate custom proxy configurations, ensuring smooth operation with supported Linux Client versions (2509.x.x.x or later). Security and functionality are achieved through rigorous validation processes, thereby preventing errors linked to misconfiguration. This development showcases a commitment to improving integration with advanced network environments and enhancing client adaptability.
Enhanced DPI Support with Cisco Umbrella
This update introduces improved Deep Packet Inspection (DPI) capabilities for the EPP Client when integrated with Cisco Umbrella’s local proxy. The client now supports monitoring HTTP traffic routed through localhost:5002, ensuring comprehensive traffic analysis and seamless HTTPS upgrades. Adjustments to port monitoring configurations allow for precise control through additional XML elements, supporting both predefined and custom ports. This enhancement provides robust monitoring flexibility and strengthens security by allowing effective DPI deployment even in complex network environments using Cisco Umbrella.
Addition of California Driving License in eDiscovery and CAP
This update expands Endpoint Protector’s predefined content recognition by integrating the California driving license as a selectable item in both Content Aware Policy (CAP) and eDiscovery Policy modules. The inclusion aims to enhance detection accuracy across all supported operating systems. An informational tooltip advises the use of Contextual Detection to minimize false positives. Backend enhancements have been implemented to support this functionality, allowing administrators to manage and adjust policy configurations with ease. This feature reflects a commitment to comprehensive content detection, optimizing policy specificity and effectiveness.
Addition of New File Types for Detection in CAP and eDiscovery Policies
This update introduces enhanced file type detection capabilities within Content Aware Policies (CAP) and eDiscovery Policies by incorporating new extensions. The .sbf and .ddd file formats are added under the ‘Other Files’ category, enabling precise monitoring and control across all connected environments. Specifically, the .ddd file format will utilize the “application/x-tachograph” MIME type for accurate tachograph data detection. Although the .pk extension was initially considered, it is already adequately detected under the CSR file type category in CAP. These augmentations ensure that specified file types are correctly identified and processed, reinforcing overall policy effectiveness and reducing the risk of overlooked data categories.
CAP Enhancement with VirtualBox and VMware Process Integration
This update enhances Content Aware Protection (CAP) policies by incorporating VirtualBox and VMware process names as policy exit points for both macOS and Windows. This addition serves to identify and manage file egress involving VirtualBox and VMware, particularly when accessing sensitive data in source files. This integration helps trigger CAP policies, allowing for effective monitoring of how virtual environments interact with secure information. It should be noted that VirtualBox does not support DPI, so use cases relying on specific destination and protocol information may not be applicable.
Full Update of Ukrainian Translations
Completed a comprehensive update of Ukrainian translations within EPP Server component, improving language support and user experience for native speakers by ensuring accurate and contextually appropriate translation throughout the interface.
Bug Fixes and Miscellaneous Updates
| Module | Title & Description | ADO Number | Salesforce Number |
|---|---|---|---|
| CAP | NetworkShare Allowlist Application Issue - Resolved a critical issue where NetworkShare Allowlist settings were not applied correctly on versions 2509/2510, causing copy operations from allowed shares to be blocked. A query change resulted in endpoints receiving an empty allowlist. This has been fixed, ensuring allowlisted shares function as expected. | 406336 & 406650 | 00460045 & 00460337 |
| Enforced Encryption | EasyLock and Client Presence Issue on Windows 11 - Fixed an issue where “Client Presence” settings didn’t prevent access to EasyLock on non-client Windows 11 machines, allowing partition access across non-client setups. A discrepancy in settings transmission from server-side to group levels caused improper application of “Client Presence.” We’ve corrected the logic for group settings, ensuring proper enforcement across all environments. This includes ensuring that EasyLock settings are correctly applied and inherited at the group level, with additional database changes like introducing a new table for logging client settings. | 404913 | 00458700 |
| Reports and Analysis | Fix for Missing XML Files and Empty Export Archives - Addressed issues where exporting reports such as CSV or XLSX files from Logs Reports, File Tracing, and Content Aware Reports resulted in empty directory archives with missing XML files. Following an update to version 2509, customers experienced loss of historical report downloads and encountered errors in generating new logs reports. The fix ensures all exported archives contain the selected files and that logging processes are adequately handled across server environments. Additional adjustments were made to alleviate time-out issues during export processes, particularly when file tracing reports are involved. | 405845 | 00459480 |
| General | IP Saving Issue on VMware EPP 2510 Image - Addressed a persistent issue where IP configurations failed to save on VMware vSphere VM appliances (versions 7.0.2, 8.0.2) using EPP Image 2510.0.1.0. Customers had to manually adjust netplan configurations as a workaround due to DHCP not assigning IPs on first boot. A fix has been implemented to ensure network settings are correctly applied during initial configurations. Investigations highlighted a need for configuration adjustments in the virtual appliance setup process. | 408487 & 408764 & 408135 | 00461744 & 00461971 & 00461405 |
| General | Language Display Error on Web Console - Resolved a critical issue where selecting Ukrainian language in the web console incorrectly displayed Turkish. This affected entire environments post-migration to EPP server version 2510, causing disruptions for many administrators. The fix ensures correct language selection and display across server interfaces, restoring smooth workflow integration for all users. | 409305 | 00462409 |
| System configuration | PHP ELS State and License Import Issue - Resolved an issue where importing a new license with a unique ELS key on the 2510 server resulted in an erroneous message, “Something went wrong during the installation. Please retry.” The ELS state did not update in the UI, and the php_els_install_status parameter remained at 0. This was caused by DNS and internet connectivity issues, as well as scenarios with duplicate licenses. The fix addresses these scenarios by ensuring accurate error messaging and state updates, improving overall stability and clarity during license import processes. | 407585 & 408350 | 00460881 & 00461569 |
| Reports and Analysis | Audit Log Backup Download Issue - Resolved a critical issue where audit log backup files could not be downloaded from the EPP server hosted on AWS. Following the upgrade to EPP Server version 2510, attempts to retrieve backup logs for compliance audits failed, affecting multiple log entries and blocking audit preparations. The fix addresses inconsistencies in log data handling post-migration, with DevOps implementing a cron job to extract available data. This solution prioritizes restoring log accessibility through simulated audit archiving. | 408745 | 00461931 |
| Certificate Management | Certificate Display Issue on macOS - Resolved an issue where DPI certificates marked as trusted on macOS clients appeared as N/A in the EPP Server UI. This was due to a validation process in the backend that erroneously used UI-only components, causing worker processes to fail. The improvement ensures certificates are accurately reflected and updates are correctly processed by server-side validation logic, enhancing synchronization between macOS clients and the server. | 406528 | 00460223 |
| Reports and Analysis | EPP Console Not Displaying Detailed Logs for Certain Files - Fixed an issue where detailed logs for CSV files were not visible in the EPP console, despite the server receiving accurate information. The console was not correctly processing logs for CSV files while PDF logs were displayed properly. The resolution ensures comprehensive visibility of log details for all file types, reinforcing complete reporting in Content Aware Reports. | 409935 | 00463129 |
| General | Email Alert - Log csv file not properly aligned - Resolved a problem where CSV files attached to email alerts were not properly parsed, resulting in all data being added to the first column. This made it difficult to read and utilize the data effectively. The fix ensures that content in CSV files is correctly distributed across the appropriate columns, enhancing clarity and usability of alert information. | 406074 | 00459728 |
| General | EPP 2510 OS downgraded to 2509 after importing 2509 backup - Addressed an issue where importing a 2509 backup file into an EPP 2510 server incorrectly showed the server version as downgraded to 2509. This is a UI display issue rather than an actual version rollback. The fix ensures that the server version is accurately displayed post-backup import, avoiding confusion and ensuring consistency across system maintenance operations. | 409666 | 00462856 |
Need help with this update?
There are many different ways to get help with our products!
| Situation | Action |
|---|---|
| If you feel the product is broken and not working as intended… | Contact Support |
| If you have a question you’d like to ask other experts… | Create a discussion in the community: Endpoint Protector > Discussions & Questions |
| If you have a feature request… | Let our product team know directly: Endpoint Protector > Ideas |
| If you have something cool to show… | Show everyone what you built: Endpoint Protector > Show & Tell |
What are your thoughts?
We are always happy to hear from our users on what you like, and what you hope to see in the future. Please, share your thoughts below!
