It's now possible to exclude a specific device type (mobile or desktop devices) from device verification. You can find this setting in the application policy.
This might be useful when you want to slowly onboard your devices or want to add XFA for a limited usecase to cover a blind spot.
All XFA clients now have added language support for French, German and Spanish next to the original English and Dutch support.
We've expanded our support to the following (browser-based) password managers:
When connecting for the first time with an application that uses XFA to verify device security, the onboarding page will now include:
We've expanded our insights to include users/devices that used the 'I'll do this later'-button when an application policy still allows it.
This allows administrators to manage their gradual onboardings better while not impacting operations in any way. You can always turn make device verification mandatory by disabling 'allow users to skip device verification' in the application policy.
We've improved the devices overview to now include more information about the device, visualized with clear indications about its security status.
We've added support in the desktop browser extension to detect installed password managers, to push the recommended practice of using a password manager to store unique passwords.
Note: The security check is not enabled by default, but can be enabled by the user (or by request of the organization).
2 new checks are now available:
We've rebranded the web experience to provide more information for users and provide clear actions for users to act upon and get their devices secure!
To scope your policies to specific (groups of) users, you can now use an email whitelist to specify email or domain for users that should be included. Useful during during your first onboarding when you want to try out XFA with a small set of people!
Note: leaving the field empty will apply the policy to all users (which is the default).