This announcement highlights the updates and fixes delivered in Netwrix Privilege Secure version 25.12.1
Want the full details? Click the link below!
Heads up. We’re moving Privilege Secure to a quarterly release cadence with a clearer versioning format. You’ll see versions like 25.12.1 going forward.
Curious why? Check out our “Upcoming Change to Privilege Secure Release Cadence and Versioning” announcement
Netwrix Privilege Secure Q4 2025 Release (25.12.1) is Now Live!
The documentation for Privilege Secure Q4 2025 Release (25.12.1) is in progress and will be available at a later date. Please see the following ‘What’s New’ section for new features, bug fix lists, and other information about this release.
What’s New
Features
Action Service & Host Scan Service: Affinity by Resource Group
You can now assign specific Action Services and Host Scan Services to individual Resource Groups. This ensures that actions and scans targeting resources in a group are handled by the designated service nodes, improving task routing control and workload segmentation.
If none of the specified service nodes are available, the system automatically falls back to a “first-come, first-served” model, allowing any available Action Service or Host Scan Service to execute the task.
To configure service affinity, open a Resource Group and use the “Host Scan Services” and “Action Services” tabs to add or remove specific service nodes.
Ticket Number & Notes Columns on Dashboard —> Active Tab
The Active tab within the Dashboard now includes the same Ticket Number and Notes columns that can be found on the Historical tab.
Changes to Activities Now Captured as Events
All changes to Activities are now logged as events via Audit & Reporting —> Events.
Bug Fixes and Miscellaneous Updates
This list includes the most significant fixes in this release; numerous minor bugs have also been addressed.
Bug Fixes
| ID | Decription |
|---|---|
| 401184 | Secure Remote Access: Copy/paste for text now works as expected |
| 405067 | Sessions now provision as expected when using any of the built-in Replication steps |
| 400511 | Remove from AD Group now works in all expected circumstances |
| 402745 | Unmanaged users no longer disappear from the Credentials tab |
| 402791 | Login Account Template now respected for “Custom” Requester Login Format |
| 405542 | Service accounts no longer get stuck in “queued” state when rotating passwords in certain scenarios |
| 406000 | Active session reference counts are now accurate; no longer prevent password rotations from occurring or managed accounts from being disabled |
| 403122 | Improved page load speed for domain details |
| 403123 | Improved page load speed for events |
| 403292 | Policy search now works as expected when viewing a user |
| 404013 | User group authentication method now overrides “Internal MFA” authentication |
| 404211 | Managing individual resources now works as expected for Active Directory for resource groups |
| 404217 | “Rotate” button now works as expected for resource groups |
| 404427 | Passwords can now be viewed as expected within the NPS UI (when allowed by admins) |
| 405051 | Protection Policies now function as expected in all scenarios. |
| 405395 | IIS no longer fails to load when running the installer due to “stalled running jobs” |
| 405994 | Improved performance of loading credentials from both PostgreSQL and SQL Server databases |
| 407104 | Improved performance for session provisioning and deprovisioning |
| 407930 | Improved performance of various lists throughout the application |
| 408017 | Drives can now be mapped during RDP sessions as expected |
| 408167 | All report filters now respect the specified timeframe |
| 408176 | Proxy now deleted old log files as expected |
| 409290 | Resolved data processing error ‘null value in column “HostUsersId” of relation “HostDatabaseDbHostUser” violates not-null constraint’ during Oracle and SQL database scans |
| 409295 | Removed “Associated Domain Controller” and “Service Account” fields from website resources, as they served no function |
| 409907 | Resolved PDF download failure in Audit & Reporting |
| 410292 | Improved communication performance for service messaging broker |
| 411442 | Resolved replication scheduled task conflict w/ multiple Action Service workers |
| 412361 | Resolved NATS communication issues in service meshes |
Known Issues
| ID | Description |
|---|---|
| 401699 | NPS servers that don’t use a trusted certificate need to re-add ‘InsecureSkipVerify’ to Host Scan Service’s ‘appsettings.user.json’ after upgrading |
| 410722 | Error duplicate key value violates unique constraint "PK_host_user_group_join” |
| 410813 | RDP sessions may have issues related to extending sessions, recording keystrokes, and viewing the mouse cursor when both the client and destination are a combination of Windows 11 and Windows Server 2025. |
Plan your upgrade
Netwrix Privilege Secure 4.2 will reach its end-of-support life on April 9, 2026. To learn more, please read the Netwrix End-of-Support Policy.
Need help with this update?
There are many different ways to get help with our products!
| Situation | Action |
|---|---|
| If you feel the product is broken and not working as intended… | Contact Support |
| If you have a question you’d like to ask other experts… | Create a discussion in the community: Privilege Secure > Discussions & Questions |
| If you have a feature request… | Let our product team know directly: Privilege Secure > Ideas |
| If you have something cool to show… | Show everyone what you built: Privilege Secure > Show & Tell |
What are your thoughts?
We are always happy to hear from our users on what you like, and what you hope to see in the future. Please, share your thoughts below!