github fleetdm/fleet fleet-v4.48.0
on GitHub

latest releases: tf-mod-addon-mdmproxy-v1.0.1, tf-mod-addon-saml-auth-proxy-v1.3.0, tf-mod-addon-ses-v1.1.0...
5 months ago

Changes

Endpoint operations

  • Added integration with Google Calendar.
    • Fleet admins can enable Google Calendar integration by using a Google service account with domain-wide delegation.
    • Calendar integration is enabled at the team level for specific team policies.
    • If the policy is failing, a calendar event will be put on the host user's calendar for the 3rd Tuesday of the month.
    • During the event, Fleet will fire a webhook. IT admins should use this webhook to trigger a script or MDM command that will remediate the issue.
    • Confirm that the webhook rate limit can support the number of hosts being remediated. Webhook 429 response exponential backoff coming soon.
  • Reduced the number of 'Deadlock found' errors seen by the server when multiple hosts share the same UUID.
  • Removed outdated tooltips from UI.
  • Added hover states to clickable elements.
  • Added cross-platform check for duplicate MDM profiles names in batch set MDM profiles API.

Device management (MDM)

  • Added Windows MDM support to the osquery-perf host-simulation command.
  • Added a missing database index to the MDM Windows enrollments table that will improve performance at scale.
  • Migrate MDM-related endpoints to new paths, deprecating (but still supporting indefinitely) the old endpoints.
  • Adds API functionality for creating DDM declarations, both individually and as a batch.
  • Added DDM activities to the fleet UI.
  • Added the enable_release_device_manually configuration setting for a team and no team. Note that the macOS automatic enrollment profile cannot set the await_device_configured option anymore, this setting is controlled by Fleet via the new enable_release_device_manually option.
  • Automatically release a macOS DEP-enrolled device after enrollment commands and profiles have been delivered, unless enable_release_device_manually is set to true.

Vulnerability management

  • Added Visual Studio extensions to Fleet's software inventory.

Bug fixes

  • Fixed a bug where valid MDM enrollments would show up as unmanaged (EnrollmentState 3).
  • Fixed flash message from closing when a modal closes.
  • Fixed a bug where OS version information would not get detected on Windows Server 2019.
  • Fixed issue where getting host details failed when attempting to read the host's bitlocker status from the datastore.
  • Fixed false negative vulnerabilities on macOS Homebrew python packages.
  • Fixed styling of live query disabled warning.
  • Fixed issue where Windows MDM profile processing was skipping <Add> commands.
  • Fixed UI's ability to bulk delete hosts when "All teams" is selected.
  • Fixed error state rendering on the global Host status expiry settings page, fix error state alignment for tooltip-wrapper field labels across organization settings.
  • Fixed GET fleet/os_versions and GET fleet/os_versions/[id] so team users no longer have access to os versions on hosts from other teams.
  • fleetctl gitops now batch processes queries and policies.
  • Fixed UI bug to render the query platform correctly for queries imported from the standard query library.
  • Fixed issue where microsoft edge was not reporting vulnerabilities.
  • Fixed a bug where all Windows MDM enrollments were detected as automatic.
  • Fixed a bug where null or excluded smtp_settings caused a UI 500.
  • Fixed query reports so they reset when there is a change to the selected platform or selected minimum osquery version.
  • Fixed live query sort of sql result sort for both string and numerical columns.

Upgrading

Please visit our update guide for upgrade instructions.

Documentation

Documentation for Fleet is available at fleetdm.com/docs.

Fleet's agent

The following version of Fleet's agent (fleetd) support the latest changes to Fleet:

  1. orbit-v1.2.0
  2. fleet-desktop-v1.2.0 (included with Orbit)
  3. fleetd-chrome-v1.2.0

While newer versions of fleetd still function with older versions of the Fleet server (and vice versa), Fleet does not actively test these scenarios and some newer features won't be available.

Binary Checksum

SHA256 

0a80748ee061b0dc3fef0ecf95abcdcf6554fb09e2f3675fa8f48c43d5582dfa  fleet_v4.48.0_linux.tar.gz
de04a4f93837236a62fcd753c4ae7f64ebdbd8880ee2faffd0b950dcc2bc744b  fleetctl_v4.48.0_linux.tar.gz
1a9fb59e84b29362e747cf4191c4100ccfa6c52fd766eedb831a4169923976eb  fleetctl_v4.48.0_linux.zip
947895eee1492a0f6da5c69fe68361b97359f52f99ac72f7947a456618f0ec7f  fleetctl_v4.48.0_macos.tar.gz
d3881b865311e774107ee50db4ee9a27cce669ccdd40e92c1990c4f1ec73e523  fleetctl_v4.48.0_macos.zip
c678c9a61d0faf3f0e030010615c3cca395d815f8c073ea171b20d4bdf221192  fleetctl_v4.48.0_windows.tar.gz
f44a9e93bc06742004f0b5c74b00cf0689b4890b903803c338ef80b9fd69c173  fleetctl_v4.48.0_windows.zip
Check out latest releases or
releases around fleetdm/fleet fleet-v4.48.0

Don't miss a new fleet release

NewReleases is sending notifications on new releases.

Get notifications