github KelvinTegelaar/CIPP v10.2.0
v10.2.0 - Blue Monday
on GitHub

6 hours ago

Everyone hates Monday.

And because everyone hates Monday, we figured to brighten yours up with a new release! This release is jampacked with features by contributors, fixes to nasty little gremlins all around. Let's get this show on the road. First off, lets make a Blue Monday and get going to see what goodies we're bringing you this week.

By the way; we're doing our first on-site events very soon with our educational content. Rotterdam is booked up, and we're looking for a venue for London. Want to join us there? check out https://cipp.ms/london-bootcamp.

Vacation Mode v2.0

Vacation mode has gotten some changes; it's no longer just Conditional Access that takes a break on your users. We've added temporary mailbox permissions, Temporary OOO settings, and improvements to the entire process for vacation mode. It's now a simple wizard and you can select whatever you'd like to happen to those happy people enjoying their vacation.

BitLocker Key Search

We've expanded our universal search; isn't it annoying when you have to find a Bitlocker key for a user, and they have to give you this endless ID first before you can find their key? We've solved that issue for you; We allow you to look for a partial key inside of the CIPP DB to find any bitlocker key and retrieve it live from Entra/Intune.

Better bookmarks

Sometimes a little UX goes a long way. @Brad-M-K decided to give bookmarks a makeover, and we love it! Thanks for the improvements Brad, and for your first contributions to the project!

And so much more:

We've added:

  • Vacation Mode — standalone wizard with mailbox permissions, calendar access, and OOO scheduling (supports non-English tenants via locale-independent folder resolution)
  • BitLocker Key Search — new Tenant Tools page to search by Key ID or Device ID and retrieve recovery keys
  • Incident Report with attachment options
  • New Standard: Restrict User Device Registration
  • New Standard: Configure local admin rights for device-joined users
  • New Standard: Windows Backup and Restore configuration
  • CA Policy Tester: authentication flow selection
  • MFAAdmins alert: enforcement gate check (admins with MFA registered but no policy enforcing it) + Include Disabled option
  • JIT reason included in add/remove alert messages
  • Bookmark sidebar with drag-and-drop reordering, sort modes, lock toggle, and mobile touch support
  • License backfill system — unknown SKUs are resolved cross-tenant and cached locally, display names update dynamically in tables and user cards
  • Restore wizard with type filtering and step visibility improvements
  • Backup management dialogs (run on demand + schedule)
  • Assignment filter options for application assignments
  • Button to deploy a group template directly from the groups page
  • Ctrl+Alt+K keyboard shortcut to focus the tenant selector
  • Severity color mapping in the logbook
  • Enabled/disabled status filter in the Standards dialog
  • Outbound connector route message support
  • SMTP auth alert now catches both 'Authenticated SMTP' and 'SMTP' clientAppUsed values

We've improved:

  • Intune assignment verification — policies are now checked against actual assignments before applying
  • NinjaOne license sync — TermInfo preserved per-license (was incorrectly aggregated); service plan details now included in reporting
  • GrantSendOnBehalfTo permissions now cached (no extra Graph calls)
  • Scheduled task management — duplicate name prevention, improved removal feedback
  • Bookmark management — rewrite of top-nav popover with non-destructive sort, per-device storage (not synced cross-device), max 50 limit
  • Sidebar scroll — smooth animation, isolated wheel events, no body scroll interference
  • MFA scripted alert — extra info surfaced, single shared snapshot prevents mixed-staleness alerts
  • PwPush - CloudFlare Tunnel / CF-ZTNA support
  • Universal search now respects tenant access permissions
  • Applied standards report layout and actions dropdown
  • User form validation and required field handling

We've fixed:

  • Intune Reusable Policy Settings — RAWJson casing mismatch causing silent sync failures
  • Intune Script Editor — editor loading in read-only mode on existing scripts
  • Standard silently overwriting 'Users may join devices to Microsoft Entra' setting
  • Teams Federation Settings standard not reflecting allowed/blocked domain changes
  • Broken documentation links in onboarding wizard and GDAP management pages
  • HTML escaping of URLs in action links breaking OAuth consent flows (& → &)
  • Encrypted policy template handling
  • MX record alert
  • Domain analyser tenant filtering
  • Offboarding logbook no longer showing group removal entries
  • Shift+Home text selection in autocomplete inputs
  • Post-execution alerts firing even when not configured on the task
  • UPN vs UserPrincipalName mismatch in mailbox operations
  • CA Test Results table columns and fetching state
  • null checks in various Standards and Intune paths

Sponsors

We extend our gratitude to our supporters at https://renroros.no/, https://immy.bot/, https://oit.co/, https://ninjaone.com/, Huntress at https://huntress.com/, https://halopsa.com/, https://www.deskdirector.com/, https://hudu.com/, our friends at https://www.meetgradient.com/, https://rewst.io/ https://augmentt.com/ and newly added Domotz and Guardz!

New Contributors

Full Changelog: v10.1.0...v10.2.0

Check out latest releases or
releases around KelvinTegelaar/CIPP v10.2.0

Don't miss a new CIPP release

NewReleases is sending notifications on new releases.

Get notifications