# Admin Console 17.6

### Overview

The Keeper Admin Console 17.6 release includes several Endpoint Privilege Manager (EPM) improvements and bug fixes.

Learn more about Endpoint Privilege Manager:

* [Product homepage](https://www.keepersecurity.com/endpoint-privilege-management/)
* [Documentation](/keeperpam/endpoint-privilege-manager/overview.md)

### Improvements

* **EM-7599** - Added "Manage Endpoint Privilege" permission to the Keeper Administrator role by default
* **EM-7800** - Improved the Risk Management page for the "Devices with Least Privilege Policy"
* **EM-7601** - Improved the Endpoint Privilege Manager page to allow for "quick" and "full sync" options
* **KPAM-641** - Implemented new screens for Endpoint Privilege Manager when the service is inactive
* **KPAM-341** - Added warning messages when downloading Agent packages
* **KPAM-369** - Improved "download packages screen"
* **KPAM-418** - Added informative banner informing users when they don't have Endpoint Privilege Manager permissions
* **KPAM-505** - Improved agent status language on Endpoint Privilege Manager
* **KPAM-536** - Changed the column headers for Collection details in Endpoint Privilege Manager
* **KPAM-798** - Added Security Benchmarks for Endpoint Privilege Manager utilization
* **KPAM-608** - Added clearer context to the EPM Dashboard headers
* **KPAM-594** - Added two ARAM agent discovery events for Endpoint Privilege Manager
* **KPAM-620** - Updated verbiage for the Risk Management Dashboard "Least Privilege Policy" confirmation
* **KPAM-694** - Replaced "Download" with a "Copy" button when downloading the agent
* **KPAM-792** - Allowed users in the MSP Keeper Administrator role to have the ability to approve and deny requests for MCs
* **KPAM-804** - Improved the endpoint count for policies that aren't active in Endpoint Privilege Manager
* **KPAM-807** - Updated the action buttons for a user that is unable to approve requests in Endpoint Privilege Manager
* **KPAM-813** - Added hyperlink to the "Agents Pending Approvals" card on the dashboard
* **KPAM-850** - Added messaging for requests if the user does not have the permission to approve or deny in Endpoint Privilege Manager
* **KPAM-869** - Added logic to ensure that policies have required fields for Applications, User Groups, and/or Machine Collections
* **EM-7904** - Validated that each Policy Filter has at least one resource in Endpoint Privilege Manager
* **EM-7906** - Validated that the Endpoint Privilege Manager Policies should require at least one Control selected in order to save the policy as "Enforced"
* **EM-7907** - Added warning when last item in the Collection is being deleted and invalidating a Policy
* **EM-7913** - Removed application filter choices for Command Line policies, since it does not apply

### Bug Fixes

* **EM-7889** - Fixed ARAM to show email addresses instead of Full Names
* **EM-7886** - Fixed SSO duplicate text on the Provisioning screen
* **EM-7908** - Fixed overlapping issue of the ARAM 30-day tab on the timeline chart
* **EM-7939** - Fixed white screen when clear filter is selected on the Security Audit page


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.keeper.io/release-notes/enterprise/admin-console/admin-console-17.6.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.