We're excited to introduce Agentless Sign-In, a new way to access your organization's resources without installing the XFA agent. This feature provides a faster, more flexible authentication experience while maintaining security compliance.

What is Agentless Sign-In?​

Agentless Sign-In allows users to authenticate and verify device compliance without requiring the XFA agent to be installed. This is perfect for users who don't have installation rights, are using shared devices, or simply want the fastest path to access.

Getting Started​

For detailed information about the agentless sign-in process, check out our user guide. For information on how to setup Agentless, check out our documentation.

We're excited to announce that XFA now includes Trends functionality in the dashboard, allowing administrators to track device security improvements and deteriorations over time.

The new trends feature provides valuable insights into your organization's security posture by displaying historical data and patterns. You can now visualize how your device fleet's compliance has evolved, making it easier to identify security trends and take proactive measures.

Current Features​

Currently, you can view trends for:

• OS Out of Date: Track how many devices have outdated operating systems over time

Coming Soon​

We're actively working on expanding the trends functionality to include more comprehensive statistics, giving you deeper insights into:

• Days since last reboot compliance
• Device encryption compliance
• Browser security status
• And many more security metrics

Get Started​

You can explore the new trends feature today by visiting the dashboard. This powerful addition to the XFA dashboard helps you make data-driven decisions about your organization's security policies and understand the impact of your security initiatives over time.

Stay tuned for more trend categories coming soon!

We're excited to announce that XFA now includes Windows Recall validation as a new security check to enhance data protection on Windows devices.

Windows Recall is a feature that automatically captures screenshots and stores sensitive information from your screen. Our new security check ensures that this feature is properly disabled to protect your organization's confidential data.

This security check allows administrators to:

• Detect when Windows Recall is enabled on managed devices
• Warn users about the potential security risks
• Block access to applications until Windows Recall is disabled

By adding this validation, XFA helps organizations maintain better control over data privacy and prevents sensitive information from being inadvertently captured and stored by Windows Recall.

You can export your devices to TrustCloud to provide device security proof automatically for your compliance needs.

Get started in the TrustCloud Dashboard under Integrations.

XFA can be used as a factor through the BYO MFA functionality in OneLogin. This allows XFA to be seamlessly added to any application from within the OneLogin admin dashboard, given that it uses Ping Identity as the identity provider.

When a user authenticates with Ping Identity, as an additional factor after supplying a username & password, the user is redirected to XFA to verify that the device is compliant with the device security policy before authenticating the user. This assures that only devices that comply with the security policy are allowed access.

Click here to get started in the XFA Dashboard.

More info

We’re excited to share that XFA has enhanced its coverage on Linux operating systems, delivering even deeper protection, broader visibility, and faster response to any potential risks. Especially on the systems that are often left out (this one is for the techies).

We're excited to announce that XFA now fully supports Brave and Safari browsers, expanding our compatibility to provide a seamless experience across more platforms. Previously, Brave was supported through our extension, but this is no longer necessary. Both browsers are now supported by the latest version of our desktop application.

This expansion ensures that users can access XFA's security features regardless of their preferred browser choice.

New security check: Device restart verification​

We've introduced a new security feature that verifies if a device has been restarted recently. This check helps ensure that the device is in a clean state and hasn't been compromised.

Why this matters:

• Clear potential malware and exploits
• Complete security updates and patches
• Reset network connections to prevent unauthorized access
• Eliminate memory leaks that could lead to vulnerabilities

You can now enforce users to restart their device if it detects that the device hasn't been restarted for an extended period, helping maintain optimal security conditions. Do you want to know more about why you should enforce this check? Check out our blog post.

🔐 Biometric authentication now mandatory​

To enhance security, XFA now makes it possible to require biometric authentication (fingerprint or face recognition) for all sensitive operations. This ensures that only authorized users can access protected features.

Key changes:

• Enforce biometric authentication for all sensitive operations
• Support for both fingerprint and face recognition
• Seamless integration with device security features

This mandatory biometric authentication adds an extra layer of security to ensure that only the rightful owner of the device can access sensitive information and perform critical operations.

Go to the policies page to enable this feature.

XFA now identifies potential vulnerabilities on your devices.​

We’ve introduced an easy way to see which high and critical vulnerabilities your devices might be exposed to. Right at the top of your dashboard, you’ll find three components that organize potential threats into clear categories:

1. Data Breach
2. Ransomware
3. Phishing

By clicking on any of these categories, you can see exactly which devices are affected. This makes it easier to prioritize and address security risks before they escalate.

Why it matters​

• Protect sensitive information – Unaddressed vulnerabilities can lead to unauthorized access or data leaks.
• Stay ahead of ransomware – Outdated systems are prime targets for malicious attacks.
• Prevent phishing attempts – Recognize and mitigate exposure points to keep users safe.

Next steps​

• Review each category at the top of your dashboard to see potential vulnerabilities.
• Identify affected devices and request that your employees or colleagues update their devices.

Have questions or feedback? Our support team is here to help.