Click here for weekly bug fix reports.
December 21, 2022
- JumpCloud has a new report available to IT Admins. The Browser Patch Management Policy Report pulls together information needed that Admins can use as evidence during compliance audits to check devices’ current browser versions and troubleshoot any related browser issues with users’ devices. Learn more: Browser Patch Management Policy Report
December 20, 2022
- Premium Support customers can now chat in real time with a Support Engineer through the Admin Portal! Live chat will no longer be available on the JumpCloud Support site.
- When you contact us through chat, we will automatically recognize your Premium Support status and you will no longer need to provide a Premium Support PIN. See Contacting JumpCloud Support to learn more.
December 19, 2022
- Explore JumpCloud’s Password Manager as part of a trial! Add a user group in Password Manager to begin. Learn more: Start or Stop a Trial.
December 15, 2022
- Customize your onboarding of new devices with the new Command After Agent Install command type! Admins can now specify enrollment commands to run immediately after the JumpCloud agent is installed on new devices. See Getting Started: Commands.
- Added a Running column to the commands queue to distinguish commands that are waiting in the queue from commands that are actively running. See Manage Queued Commands.
December 14, 2022
Certificate Based Authentication to RADIUS
- JumpCloud RADIUS now supports certificate (passwordless) based authentication, and is supporting certificates from any X.509 compliant certificate authority.
- Organizations who are already using and managing certificates can import them into JumpCloud and use them for authentication to JumpCloud RADIUS.
- For more, see Certificate Based Authentication to RADIUS for Admins.
December 12, 2022
Multi-factor Authentication: TOTP for LDAP
- Time-based One-time Password (TOTP) is now a supported MFA factor for LDAP applications. Organizations can now authenticate into LDAP applications using TOTP, in addition to JumpCloud Protect for push notifications. For more, see: Configuring MFA for LDAP Applications.
December 8, 2022
Admin Portal Timeout
- Certain pages in the Admin Portal were not respecting the default session timeout.
- A fix has been released so that all sessions which haven’t had user interaction for 60 minutes will be logged out. A session expiration warning will be displayed one minute before termination of the session.
December 7, 2022
Multi-Tenant Portal & Managed Service Providers
New Homepage Widgets
- This widget shows an aggregate view of all reports across all of your tenant organizations that are have become available to download within the last 24 hours. MSP Admins can bulk action select multiple reports at once to export as JSON or CSV. Learn more: Multi-Tenant Portal (MTP) Homepage.
MacOS Software Updates
- JumpCloud now also allows you to update, or even force to update, a single macOS device in your org from the Admin Portal. You can choose the timeframe during which the update will install on the device and choose how much flexibility the user has in delaying or canceling the update. Learn more: Schedule an OS Update for a MacOS Device.
November 30, 2022
Multi-Tenant Portal & Managed Service Providers
New Homepage Widgets
- The new MDM Upcoming Certificate Expirations widget provides an “at-a-glance view” into the life cycle of a user’s MDM certificates, Apple’s Volume Purchase Program (VPP), and Automated Device Enrollment Certificates. This widget helps keep admins on top of upcoming expirations. Users won’t be impacted by expired certificates; instead an IT admin can efficiently take action and keep business running smoothly. Learn more: Multi-Tenant Portal (MTP) Homepage.
Identity First Login
- For the User Portal and SSO applications, users will now log in with two screens.
- The first login screen will ask for the username/email, with an option to remember the username.
- After entering the username/email and clicking Continue, the user will be taken to the Password screen for completing the login process.
- This work is foundational for future passwordless and federation based authentication workflow options.
- Making support happen with the new JumpCloud Case Portal. It allows you to easily view ideas and support cases submitted by any administrator in your organization in one place. Instantly see case statuses, apply filtered searches, and view case details with one click. Learn more: JumpCloud Support: Using the Case Portal.
November 29, 2022
New Device Condition in Conditional Access Policies
- An administrator can configure a conditional access policy allowing or denying access to resources when disk encryption is enabled or disabled on the device.
- The qualification for encryption is FileVault enabled (MacOS), system drive encrypted (Windows), or root disk is encrypted (Linux).
November 17, 2022
- OpenID Connect Single Sign-On
Use JumpCloud OpenID Connect (OIDC) Single Sign-On (SSO) to give your users secure and convenient access to their OIDC-capable web applications with a single set of credentials.
- We’ve added support for the JumpCloud agent on Linux Fedora 37. See JumpCloud Agent Compatibility, System Requirements, and Impacts for a complete list of supported OSes.
JumpCloud Case Portal
- JumpCloud’s Case Portal is now available from the Support menu. It centralizes all of your organization’s cases and ideas submitted from any administrator into a filterable list with clickable case numbers to view the details of each item.
November 8, 2022
Multi-Tenant Portal & Managed Service Providers
- Create Custom Command Templates
Managed Service Provider (MSP) Admins can save valuable time and reduce errors when running custom commands on devices across many organizations by creating command templates. These can be accessed, and applied to any of your tenant organizations, instead of manually configuring commands for each one. Learn more: Manage Command Templates in the Multi-tenant Portal.
November 2, 2022
- Google Chrome Universal Browser Patch Management
Create a universal policy to keep Google Chrome up to date for macOS, Windows, and Linux. A universal policy saves you time by automatically scheduling and enforcing Chrome security patches on a large number of managed devices running multiple operating systems. Learn more: Create a Universal Browser Patch Policy.
October 28, 2022
- JumpCloud Password Manager
The JumpCloud Password Manager empowers end users to securely manage and share passwords and other sensitive information to get work done efficiently. Its decentralized architecture provides the admin with better security, full visibility, and proper control over password usage throughout your organization.
- Passwords and other secrets are stored locally, then synced with end-to-end encryption, removing the need for a master password.
- A supported browser extension allows end users to auto-fill across browsers and applications.
- Secure password sharing reduces the risk of insecure sharing between users.
- Intuitive password generation creates strong and unique passwords.
- It is part of a comprehensive directory platform used to manage access, users, and devices in a centralized manner through the JumpCloud admin console.
Learn more: Getting Started: Password Manager.
October 24, 2022
JumpCloud Remote Assist App
- On October 26, all JumpCloud customers with JumpCloud Agent version 1.61.0 or later can access Remote Assist for remote desktop access and support. The JumpCloud Agent will silently install JumpCloud Remote Assist agent version 0.2.4 on supported Windows and macOS devices.
- Remote Assist is a free addition to the JumpCloud Directory Platform and provides remote desktop access and support for organizations of any size for any number of devices, without limits on time or number of sessions.
October 24, 2022
- Updated Password Complexity Dialog
The new interactive password complexity component makes setting up a password policy-compliant password a pleasant and error-free experience. The new dialog has the following enhanced functionality:
- Shows and validates all password complexity requirements with as-you-type visual feedback.
- Is mobile responsive.
- Is designed to be WCAG-compliant.
With the release of macOS 13 Ventura, Apple has changed their software update behavior. Starting with macOS 12.3, Apple will provide a smaller “delta” update for devices that will allow users to update to macOS 13 Ventura rapidly. However, this will cause changes that will affect JumpCloud and JumpCloud IT Admins. To address this, JumpCloud has created new software management policies for admins to use to prevent unwanted upgrades to macOS Ventura. Learn more: Delay or Block MacOS Ventura on your Devices.
October 12, 2022
- Directory Insights
Systems login attempt events are updated to only send events generated by a user. Local system accounts for Windows won't generate these events. Update will be released with agent version v1.59.0.
In macOS 13 Ventura, end users have the ability to switch off persistent software, such as the JumpCloud Agent. JumpCloud provides a Managed Login Items policy that, once configured, prevents users from disabling persistent software. Read more.
October 6, 2022
New JumpCloud Homepage Widgets
- The new MDM Upcoming Certificate Expirations widget provides an “at-a-glance view” into the life cycle of a user’s MDM certificates, Apple’s Volume Purchase Program (VPP), and Automated Device Enrollment Certificates. This widget helps keep admins on top of upcoming expirations. Users won’t be impacted by expired certificates; instead an IT admin can efficiently take action and keep business running smoothly. Learn more: JumpCloud Homepage.
October 5, 2022
- Trying a feature as part of a JumpCloud trial? The trial recap gives you valuable insight by summarizing your feature use. Learn more: View the Trial Recap.
September 27, 2022
RADIUS Authentication with Azure AD Credentials
- Organizations can now enable RADIUS access using Azure AD as the identity provider, which provides the advantage of an organization getting secure RADIUS access through JumpCloud without having to manage users and passwords outside of Azure AD.
- Linux – Forbidden Services Policy
The Linux Forbidden Services policy offers enhanced security risk posturing by removing support for service types that are not required for everyday operation of your Linux fleet. Learn more: Create a Linux Forbidden Services Policy.
September 23, 2022
- SentinelOne integration with JumpCloud
You can use the Commands feature of the JumpCloud Admin Portal to download and install the SentinelOne Agent on macOS, Windows, and Linux devices. SentinelOne provides security software to protect endpoints from malware and exploits. Read more.
September 20, 2022
- OS Patch Management Policy Report
The OS Patch Management Policy Report shows which policies are applied to each device, as well as their current status. This report helps provide organizational OS patch compliance, troubleshooting for device issues, and more. Learn more: OS Patch Management Policy Report.
September 15, 2022
- JumpCloud’s Microsoft 365 integration now includes M365/Azure AD security groups! Easily connect your employees to the people and resources they need to do their jobs by exporting JumpCloud user groups to M365 security groups. Learn more: Managing Google Workspace and M365/Azure AD Groups.
September 13, 2022
- Managing Devices Just Got Easier
A new Activity tab and time selector on the Devices Overview tab provides a summary of all new and deleted devices, and patch events like major and minor OS updates. For accounts that have Directory Insights, the time selector lets you filter up to 90 days. For free accounts and accounts without Directory Insights, the time range is limited to 15 days. You can also filter patch events by OS. Learn More: Getting Started: Patch Management.
September 12, 2022
- Commands From Templates
Creating a new command from a command template can save you time and reduce errors when running custom commands on your devices. Learn more: Getting Started: Commands.
- Commands Queue introduced
View a list of upcoming commands using the new Commands > Queued tab. Click on a command in the queue to see a detailed view of the execution by device. Learn more: Manage Queued Commands.
Multi-Tenant Portal & Managed Service Providers
- Ticketing for Autotask PSA & ConnectWise Manage Integrations
Set up automatic Ticketing alerts for your Autotask PSA or ConnectWise Manage integrations to be alerted of actionable incidents in your MTP. Learn more: Integrate Autotask PSA in the MTP, and Integrate ConnectWise Manage Billing for MSPs in the MTP.
- Customizable widgets for the Admin Portal and MTP Homepages
The Homepage widgets show you an aggregated view of statuses or any issues across your organizations. After you click a specific widget, it pulls up detailed information about any alerts, lockouts, and more for the affected organizations. Learn more: JumpCloud Homepage, and Multi-Tenant Portal (MTP) Homepage.
September 9, 2022
- New Report for IT Admins: Users to SSO Applications Report
This newest report type returns all user attributes and SSO application associations for each user, assisting IT Admins in meeting compliance requirements and troubleshooting issues. Learn more: JumpCloud Reports
September 8, 2022
- Added support for Linux Mint 21.x on x86_64 and ARM64 processors.
- Limitation: There is a known limitation on Mint Cinnamon 21 devices that prevents IT Admins from deploying the lock device security command from the Devices aside in the Admin Portal.
August 25, 2022
- Added support for Rocky Linux 9.x on x86_64 and ARM64 processors.
August 16, 2022
Multi-factor Authentication (MFA) for LDAP
- IT admins can now configure MFA for LDAP applications by user groups.
- This can be configured using conditional access policies.
- Currently only push MFA through the JumpCloud Protect app is supported.
- Learn more: Configuring MFA for LDAP Applications
August 9, 2022
- New macOS and iOS Policies help your Apple apps work efficiently and securely with less user intervention:
- Preapprove permissions for system services for a specific app. Learn more: Mac Application Privacy Preferences Policy.
- Preapprove specific Kernel Extensions before or after the app installation. Learn more: Mac Kernel Extensions Policy.
- Preapprove specific System Extensions before they are installed. Learn more: Mac System Extension Policy.
- Encrypt DNS traffic over HTTPS and TLS and hide DNS queries. Learn more: Mac or iOS Encrypted DNS Policy.
- Enable permissions for the Falcon agent on Apple silicon devices. Learn more: Mac CrowdStrike Falcon MDM Settings (No kernel extension) Policy.
- Enable permissions for the Falcon agent on Apple devices with Intel processors. Learn more: CrowdStrike Falcon Firmware Analysis Settings (Intel Only).
August 5, 2022
- Policy Management
To provide better support for our Linux admins and improve security and management of Linux endpoints, these additional Linux policies are now available: SSH Server Security Enforcement and SSH Root Access. Learn more: Linux Hardening Policies.
July 18, 2022
- Membership Suggestions
Admins can now use an 'equals' operator, supporting both single and multiple value conditions for use in joining criteria to define the membership of a user group. This enables admins more flexibility regarding criteria covering user friendly conditions, as well as supports multi-value operations using ‘OR’ logic. Admins can also configure targeted conditions to cover more users or exclude certain users within their organization. Learn more: Getting Started: User Groups.
July 15, 2022
- Add Your Organization’s Logo and Message to Patch Notifications
Add your organization’s logo and a customized message to notifications about macOS updates. Patch updates can help keep your macOS device secure and updated. Learn more: Create a MacOS Patch Policy.
- Scheduled Activation
Admins can now schedule activation for a Staged user's start date. The scheduled event can be configured to send an activation email, enabling the user to set their own password and finish their onboarding to JumpCloud. This feature can also be used in conjunction with Scheduled Suspension to create access control through all stages of employment for contractors. Learn more: Managing User State.
Admins can now view and download invoices from the Admin Portal. Go to Account > Invoices to see invoices for up to the past six months. Note: Invoices are only available from July 2022 forward.
July 14, 2022
iOS VPP Updates
- IT admins can now remotely add and assign Volume Purchase Plan (VPP) applications to iOS devices or device groups, previously just available for macOS.
- At this time, iOS includes iPhones and iPads.
- Additional updates in Software Management:
- More intuitive statuses
- The ability to retry actions, and a bulk retry button
- Supply Configuration capability for VPP apps
- New Quick Action Buttons within Commands
From the Commands list, you can now quickly run or delete a command using the run now or delete buttons.
July 7, 2022
- Install CrowdStrike on MacOS Devices via an Admin Portal Command
Install CrowdStrike on macOS devices and apply macOS policies to manage it. Learn more: Installing CrowdStrike's Falcon Agent.
- Clearer Wording for End Users
We now have clearer wording for end users when they set up or log in with MFA. Learn more: Identity Verification Overview for Users.
June 30, 2022
- Linux Hardening Policies
In continuing to provide better support for our Linux admins, as well as improving security and management of Linux endpoints, these Linux policies are now available:
- File Ownership and Permissions
- Partition and Mount Options
- Lock Screen
- Network Parameters
- Linux RPM/DEB Packages
Installed Linux rpm/deb packages are now visible in the System Insights information Section of the Device’s Details tab.
June 29, 2022
Multi-Tenant Portal & Managed Service Providers
- Set User Caps for Organizations
MSP Admins can now put a cap on how many users each organization can have in the MTP. Learn more: Set User Caps on Organizations in the MTP.
June 16, 2022
- JumpCloud Includes New Reporting Features
The reporting feature in JumpCloud allows admins to pull essential data about their organization and repurpose it to meet compliance goals, assess governance, and evaluate security posture. Learn more: JumpCloud Reports.
- JumpCloud Agent Support for Fedora 36
JumpCloud now supports Fedora 36 for Linux OS. Learn more: JumpCloud Agent Support for On-Premise Active Directory and Azure Active Directory Joined Windows Device.
June 13, 2022
- JumpCloud Agent Support for AD and AAD Domain Joined Windows Devices
If your organization has on-premise Active Directory (AD) or Azure Active Directory (AAD) joined Windows devices, you can install the JumpCloud agent on those devices and bring them into your JumpCloud org. Doing so enables the administrator to remotely and securely manage the device as well as take advantage of JumpCloud’s System Insights feature. Learn more: JumpCloud Agent Support for On-Premise Active Directory and Azure Active Directory Joined Windows Device.
June 8, 2022
Previously, JumpCloud kept commands queued to run on devices for 10 minutes. If devices did not check in within those 10 minutes, the command dropped from the queue. We have added a "Time-to-Live" feature to queued commands that allows IT Admins to choose a timeout from a list of smart defaults, or configure a custom timeout period of up to 10 days. Learn more: Getting Started: Commands.
June 7, 2022
User Management and Device Management
- JumpCloud’s New Homepage
JumpCloud's Admin Portal Homepage has been upgraded with a new look and new features! It gives you aggregated, actionable, directory data at-a-glance to help you accomplish tasks and troubleshoot issues quickly across the users and resources in your organization. Learn more: JumpCloud's New Homepage.
May 25, 2022
- Perform Automatic Cross Platform Device Updates
Default patch management policy groups let you apply deployment ring policies to a large numbers of devices, saving you time and keeping hundreds of cross platform devices up to date. Learn more: Creating Default Patch Policy Groups.
May 23, 2022
Managed Service Providers
- Autotask PSA Integration
The Autotask PSA integration is available in the Multi-Tenant Portal (MTP). This updates your JumpCloud user quantities and cost per seat daily. Stay informed on your costs and product usage, along with ensuring you’re billing your clients appropriately. Learn more: Integrating Autotask PSA in the Multi-Tenant Portal.
May 18, 2022
- Sort Devices by Date
You can now easily see new devices you’re managing with JumpCloud. By default, the new sortable Created column in the Devices List displays your newest devices first.
- New Supported Linux Version
JumpCloud Administrators can now secure, manage, and view their RHEL 9 systems. Learn more: JumpCloud Agent Compatibility, System Requirements, and Impact.
May 15, 2022
- Added ‘Staged User’ As a New User State
User states represent where a user is in their lifecycle and allows you to decide when access is granted or revoked by a change in the user state. User state transitions can be done manually or can be scheduled and are logged in Directory Insights for traceability.
April 29, 2022
Streamlined Avatar Menu
- Over the years, we’ve added items to the administrator avatar dropdown menu in the JumpCloud Admin Portal that had no relevance to the administrator’s identity. We’re now removing the following menu items that already exist elsewhere in the menu system:
- Update/Add Payment Info (changed to Payment Information)
- API Settings
- Customize Email Templates
- Contact Support
- Submit an Idea
Streamlined Left-hand Navigation
- Currently, the User Security Settings menu item in the JumpCloud Admin Portal left navigation is merely a link to the Security tab under the new Settings screen. We’re removing this duplicate menu item to clean up the left navigation.
- To protect our patent portfolio better, we’re adding patent language to the footer of the Settings screen in the JumpCloud Admin Portal. The language is identical to the patent language on the JumpCloud website.
April 22, 2022
Push for RADIUS
- Admins can now configure Push MFA for RADIUS servers, in addition to being able to configure TOTP. Push MFA must be enabled, and user accounts must have it set up. Learn more: JumpCloud Multi-factor Authentication for RADIUS
April 18, 2022
- JumpCloud’s automated patch management helps you keep your macOS, Windows, and now Linux (Ubuntu) devices secure and up-to-date with automated patching. You can manage when OS patches and updates are available to your devices and specify update settings to enforce installation. Learn more: Getting Started: Patch Management.
April 14, 2022
Managed Service Providers
- Download Billing Invoices
MSP Admins can now see available billing invoices and download them for all of their Organizations from the Multi-Tenant Portal. Learn more: Downloading Billing Invoices from the Multi-Tenant Portal.
April 12, 2022
- Beginning with JumpCloud Agent version 1.9.1, when the agent is updated and there is no JumpCloud Service Account detected, a service account creator app now prompts for an admin user and password to complete device enrollment on a Mac. Learn more: Resolving a JumpCloud Service Account Prompt on MacOS
Mobile Biometric with Protect
- Admins can now require mobile biometric as an additional user verification on the JumpCloud Protect app.
- User Verification is a security measure that verifies the person authenticating to a service is in fact who they say they are.
- The device must support biometric verification or PIN/Passcode verification.
- This can be enabled in the MFA Configurations page. Learn more: JumpCloud Protect Admin Guide
April 1, 2022
- In the Users list, you now have several columns to choose from to see if users are enrolled in MFA, the status of their enrollment, and which types they are enrolled in. Status fields replace the padlock icons, and hovering over those fields provides details.
- New columns are: MFA: TOTP, MFA: Enrollment, MFA: JumpCloud Protect, MFA: User Requirement, and MFA: WebAuthn.
- To view the information that was previously included in the TOTP column, add the MFA: User Requirement column to the defaulted MFA: TOTP column.
- All of this information will be included if the export functionality is utilized from this page.
- MFA: TOTP is included on the Users list page by default. Add or remove others by using the columns dropdown.
- The MFA status information is especially useful when you are trying to confirm that all users are enrolled in a certain factor of MFA before setting it as required per user or as a conditional access policy.
- Additionally, MFA Enrollment (enrolled/not enrolled) was added as an option to the filters on this page. Learn More: Understanding User MFA Enrollment
March 28, 2022
- The MFA Configurations page has been updated to better display the MFA factors, which resources are supported for each factor, and which are enabled or disabled. In addition, enabling and disabling an MFA factor now takes immediate effect, without having to scroll to the bottom of the page and Save. Learn more: MFA Configurations.
March 23, 2022
- JumpCloud’s automated patch management helps you keep your macOS and Windows devices secure and up-to-date with automated patching. You can manage when OS patches and updates are available to your devices and specify update settings to enforce installation. Learn more: Getting Started: Patch Management.
March 15, 2022
- You can now enroll company-owned iOS, iPadOS, and tvOS devices in MDM using Apple’s Automated Device Enrollment and zero-touch onboarding without ever touching the device. Zero-touch onboarding lets you personalize iOS screens and settings for your users, ensuring that every user has exactly the same experience. After a user authenticates on a device by entering a password, JumpCloud automatically assigns the user to the device. Learn more: Enrolling iOS Devices in MDM.
February 25, 2022
- The steps for adding and renewing your MDM Server in Apple Business Manager or Apple School Manager have been updated to reflect changes to those apps. Learn more: Configuring Automated Device Enrollment.
February 24, 2022
- You can now enable a recovery email address to be used when users need to reset their password. Password resets from the recovery email address require multi-factor authentication (MFA). This recovery email address is in addition to the company email address that users already have. Learn more: Setting Up a Recovery Email Address for Password Reset.
February 22, 2022
Managed Service Providers (MSPs)
- The ConnectWise Manage integration in the JumpCloud Multi-Tenant Portal (MTP) updates your JumpCloud user quantities and cost per seat daily. This allows you to stay informed on your costs and product usage, along with ensuring you are billing your clients appropriately. Learn more: Integrating ConnectWise Manage Billing for JumpCloud Managed Service Providers (MSPs).
February 11, 2022
- You can now add applications that present device certificate prompts to a list of trusted applications. This prevents macOS users from being prompted to enter the device trust keychain password for apps that authentication outside of a browser. Learn more: Understanding MacOS Keychain Application Access.
February 8, 2022
- You can now set individual permissions on device groups that are bound to existing user groups. Learn more: Setting Sudo/Administrator Permissions.
January 4, 2022
- You can now migrate macOS devices that are manage