Skip to main content

Release notes - January 24th, 2025

Nik Pot

Co-managed JIT login

With idemeum you can now onboard your customer admins and allow them to login to company workstations with JIT co-managed account, manage elevation requests from users, and access LAPS credentials. Simply onboard the user into a customer tenant with a mobile app, and the rest will be handled automatically. What is more, this feature does not use any technician JIT licenses, feel free to onboard as many co-managed users as necessary.

Co-managed JIT login
Onboard admins of your customers so that they can perform JIT logins, access credentials, and approve elevation requests.
idemeum docsNik Pot

Device sharing

You can now control what users and groups can access what customer workstations. For instance, when you onboard a new tech and delegate access to a customer tenant, you might limit the JIT access to only customer workstations and not domain controllers. You can configure workstation access control with groups or direct user assignments.

Device sharing
Control what users and groups can access workstations with JIT accounts.
idemeum docsNik Pot

macOS improvements

  • Auto update - macOS agent now supports auto-update. The agent will periodically check if there is a new version available and will silently update the dekstop agent.
  • Timer bug fix - fixed the issue where when time was set to 0, it was going into the endless loop.

Improvements and fixes

  • Key management improvements - we improved how encryption keys are managed and passed when you login between customer tenants, and use various surfaces including iFrame for PSA integration, browser and extension.
  • Allow EPM approvals in read-only delegation mode - now when technician is delegated to customer tenants with read-only mode, we also allow technician to approve elevation requests.
  • Technician mode audit logging - we now capture the technician mode event and generate an audit log record when one of your techs initiates Technician mode on the workstation. We generate the following record:
    • nik@nikpot.com initiated technician session (Technician mode) on the Desktop JIT-W11-LOCAL for the user account mike.
  • Bug fix: group delegation after user disabled - fixed the issue where the user was not properly delegated to customer tenants as part of group, when the user record was first disabled and then enabled back.
  • Cosmetic UI clean up - cleaned up the UI to create more clear titles, fixed broken documentation links, and reorganized menus for easier navigation.