What's New Since 10.90 Release Notes

List of features and enhancements introduced after the release of MaaS360 Cloud version 10.90.

Version 10.90.cd.14022024 Released 14 February 2024

Introducing new UX design for the Android OEM Configuration

Maas360 has redesigned the user experience of the Android OEM (Original equipment manufacturer) Configuration to improve usability and enhance the overall user experience. For a comparison between the old and new UX of the OEM Configuration, see https://www.ibm.com/support/pages/node/7117886.

Version 10.90.cd.13022024 Released 13 February 2024

Introducing CVE-pivoted view for Risk-based application patching

MaaS360 introduces a new Vulnerabilities widget on the Application Security page. This widget provides a CVE-pivoted view of the top critical vulnerabilities in the third-party apps deployed in an organization and aids in the remediation of vulnerabilities.

Version 10.90.cd.12022024 Released 12 February 2024

Enhancements to iOS MDM policy settings for supervised iOS devices

MaaS360 has introduced the following placeholders to the Shared Device settings for supervised iOS devices: %deviceid%, %phonenumber%, %iccid%, %imei%, and %meid%.

Version 10.90.cd.09022024 Released 09 February 2024

Automatic activation of Samsung Knox Platform for Enterprise (KPE) premium licenses through MaaS360 portal >>

Samsung makes Knox Platform for Enterprise (KPE) premium licenses available to customers at no additional cost. A Premium license is required to unlock advanced configurations for Knox devices such as Allow dual SIM operation, Allow remote control, and Allow bluetooth scanning. Previously, administrators had to manually obtain and deploy KPE premium license keys through the MaaS360 portal. MaaS360 eliminates that step in this update by automatically embedding EMM-specific premium license keys directly within the Samsung OEMConfig profile. When administrators republish the OEMConfig, Samsung automatically activates these hidden keys on enrolled Samsung devices. For customers who already purchased KPE premium licenses through Knox resellers, the option to deploy those keys through the MaaS360 portal remains available. Importantly, keys obtained from resellers will take precedence over the EMM-specific ones, ensuring continued access to their chosen license configuration.

For more information about KPE license keys, contact Samsung Knox support team.

Customize the error message shown to users when devices do not meet OS requirements >>

In previous releases, MaaS360 introduced an advanced enrollment setting Enroll under Android for Enterprise only if the OS version is above, enabling administrators to set minimum OS version requirements for Android Enterprise enrollments. If devices fail to meet the criteria during enrollment, a generic error message is displayed and the enrollment is blocked. In this release, MaaS360 adds a new branding element to tailor error messages displayed to users when their devices don't meet the minimum OS requirement for Android Enterprise enrollment. Administrators can use this feature to provide a custom message that allows users to understand the issue and potentially take corrective actions, such as updating their device OS or exploring alternative enrollment options.

Note: Path to the new branding element: Setup > Branding > Branding Elements > Android Enrollment Configuration > Error message if minimum allowed version criteria are not met.

Version 10.90.cd.02022024 Released 02 February 2024

Authentication Bypass vulnerability fix

MaaS360 is enhanced to address an Authentication Bypass vulnerability in the IBM MaaS360 Android and iOS applications. Administrators are recommended to update to the latest application versions to ensure improved security.

Version 10.90.cd.19012024 Released 19 January 2024

Support TLS 1.3 protocol

NIST announces the publication of NIST Special Publication (SP) 800-52 Revision 2, Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations.

To adhere to FedRAMP and NIST Special Publication compliance, the MaaS360 Portal will provide support for the TLS 1.3 protocol beginning in January 2024.

In addition to the currently supported TLS 1.2 cipher suites, the newly added TLS 1.3 cipher suites are as follows:

  • TLS_AKE_WITH_AES_128_GCM_SHA256
  • TLS_AKE_WITH_AES_256_GCM_SHA384
  • TLS_AKE_WITH_CHACHA20_POLY1305_SHA256

For information about all the ciphers supported in Maas360, see MaaS360 platform system requirements.

Version 10.90.cd.21122023 Released 21 December 2023

Enhanced Android Enterprise enrollment options in MaaS360 Portal

MaaS360 adds a major update to the Android Enterprise enrollment options within the MaaS360 portal. This update includes a reorganized interface that simplifies the management of Android Enterprise enrollments, offering a more intuitive experience for administrators.

Key enhancements in the new user interface:
  • Restructured enrollment settings: The enrollment settings are now neatly categorized by platform (Android, iOS, Windows) under Devices > Enrollments > Other Enrollment Options. The enrollment settings are now logically grouped under corresponding sections. For instance, Android enrollment options are located under the Android section, eliminating the previous grouping of options for all platforms (iOS, Android, Windows) in a single menu.
  • New Android enrollment wizard: MaaS360 adds a new wizard which is accessible in Devices > Enrollments > Other Enrollment Options > Android. This new wizard centralizes enrollment configuration options for all Android Enterprise methods. Administrators can now easily configure Android enrollments in one place, eliminating the need for multiple workflows. Additionally, MaaS360 introduced a dedicated option in the Android enrollment wizard for generating KME Device Owner enrollment configurations. In the previous releases, administrators had to use Zero-touch enrollment option to generate JSON configuration for KME Device Owner enrollments.

For more information about Android Enterprise enrollment options and modes, see Android Enterprise enrollment guide

Version 10.90.cd.11122023 Released 11 December 2023

Decommissioning of BlackBerry Details report >>

In December 2023, MaaS360 decommissions the BlackBerry Details report in the MaaS360 Portal. This update is implemented to optimize the portal's functionality, considering the reduced usage of these reports.

Decommissioning of PC Overview report >>

In December 2023, Maas360 decommissions the PC Overview report in the MaaS360 Portal. This update is implemented since all the metrics and statistical data presented in the PC Overview report are included in the UEM Overview reports, which are accessible to all users by default.

Version 10.90.cd.07122023 Released 07 December 2023

Introducing risk rule and risk scoring for vulnerable third-party applications >>

The Application security risk rule is introduced in the Risk Rule Configurator and is enabled by default for customers who have enabled the Risk Based Application Patching service in the MaaS360 Portal. This rule assesses the application security posture of devices. MaaS360 creates risk incidents when app vulnerabilities are detected and then validates them against the risk rule to calculate the severity and risk score for devices and users.

Version 10.90.cd.08112023 Released 08 November 2023

Actions Log to track status of security actions >>

MaaS360 introduces an Actions Log page to track the status of security actions taken by administrators within an organization. These actions are taken on devices and logical groups to restrict risky users and devices from gaining unauthorized access to corporate resources. The security actions include remediation actions, such as upgrading applications, uninstalling applications, and notifying devices. The page displays the action log data for the past 6 months.

For information on tracking the status of security actions taken in the Application security dashboard, see Application security widget and Remediating vulnerable apps.

Note: This feature is not generally available. You must contact IBM Support to get this feature enabled for your account.

Version 10.90.cd.03102023 Released 03 October 2023

Support for remediation action in the Application security widget >>

MaaS360 has enhanced the Application security offering in the Security Dashboard to introduce a new remediation capability. Administrators can use the remediation action to update or uninstall vulnerable third-party apps installed on devices. This action can be performed on a single device, multiple devices, or all devices. Administrators can also send notifications to users and devices about app vulnerabilities.
Note:
  • The Risk Based Application Patching offering is currently available for non-federal customers only. This offering is not available to federal customers until FedRAMP approval is obtained for the required services.
  • This feature is not generally available. You must contact IBM Support to get this feature enabled for your account.

Version 10.90.cd.22092023 Released 22 September 2023

Support for new Zebra OEMConfig app >>

MaaS360 adds support for the new Zebra OEMConfig Powered by MX app, a new version for Zebra devices running Android 11 and Android 13 and later. This app delivers numerous enhancements built by Zebra, including an all-new schema designed according to changes mandated by Google.

To use the new Zebra OEMConfig app, you must:
  1. Create an OEMConfig profile in the MaaS360 Portal using the new Zebra OEMConfig Powered by MX app.
  2. Distribute the profile to Android 11 and Android 13+ devices.
For more information on using OEMConfig apps in MaaS360, see https://www.ibm.com/docs/en/maas360?topic=security-using-oemconfig-apps-apply-advanced-device-configuration-policies-in-maas360
Note: The new version is not compatible with Android 10 or older Android versions.