Released on July 2, 2025
This release introduced several new SIEM provider integrations, new role policies for upcoming features and performance updates for large enterprises.
We have included new policies in the Admin Console for upcoming security features which have not yet been rolled out to client applications. Admins now have the opportunity to disable the features before they are available to end-users.
Biometric login with Passkeys (Roles > Enforcement Policies > Login Settings) This is a new feature being introduced in Browser Extension 17.2. A passkey with a biometric replaces both first and second factor authentication.
Editable one-time shares (Roles > Enforcement Policies > Creating and Sharing) This is a new feature being released with Vault 17.3. This allows bi-directional sharing of data from one-time shares.
Creating two-factor codes in records (Roles > Enforcement Policies > Creating and Sharing) This policy has not yet rolled out to client applications, it will be available in the upcoming releases. It will prevent users from storing TOTP codes within records.
KA-6464: Role policy to restrict editable one-time shares (Defaults: OFF)
KA-6804: Role policy to restrict biometric login with Passkeys (Defaults: ON)
KA-6890: Crowdstrike NG SIEM integration -
KA-5783: Google Security Operations (Chronicle) SIEM integration -
EM-7494: Added a "tag" on users with at-risk records
EM-7495: Added a "tag" on users with a low security score
EM-7610: Improved caching to support large enterprises and prevent browser crashes
EM-7633: Sorting of users table is now alphabetical