MacOS

12.7.0.8565

Release Date

17 March 2026

New Features

  • Indicator of Compromise (IOC) - Infinity Portal Management

    The agent now supports Indicator of Compromise (IOC) management through the Infinity Portal. This enables centralized IOC policy handling across the organization. (Available in Early Availability mode)

Enhancements

  • Split Disable Sign-Out and Block Uninstall into Two Separate Controls

    Disable Sign-Out and Block Uninstall are now independent controls, each with its own dedicated code and prompt, giving administrators more granular control over endpoint restrictions. (Available in Early Availability mode)

  • Tenant Restrictions - Failed Login Attempt Logs
    Logs are now generated for failed login attempts, giving administrators better visibility into unauthorized access attempts.

  • HTTPS Inspection Allow Logs
    Administrators can now enable logs for traffic bypassed from HTTPS inspection, making it easier to track what is excluded from inspection policies.

  • Security Profiles

    • File types are now grouped under file handling, with no constraints on using the Strict and Optimized built-in profiles.

    • Administrators can now log all Threat Emulation verdicts, including non-malicious files, for full inspection visibility.

Resolved Issues

  • P81-105963 - Unable to collect logs when the agent is in signed-out state.

  • P81-87418 - Keychain corruption affecting agent connection.

Status

Under gradual rollout to all customers.

Download Agent

Download

12.6.0.8419

Release Date

05 March 2026

New Features

  • Block Websites with Invalid Certificates

    Administrators can now enforce blocking of websites with invalid certificates (Expired, Revoked, Self-Signed, Untrusted), strengthening endpoint security and preventing end users from accessing potentially unsafe sites. (Available in Early Availability mode)

Enhancements

  • Security Events Pop-Up Notification Control

    Administrators can now disable and enforce security event pop-up notifications across their organization. By default, end users continue to receive notifications and can toggle this setting in the agent settings screen. (Available in Early Availability mode)

  • Updatable Objects Support for Internet Access

    Internet Access policies now support dynamically maintained network objects that automatically update based on vendor-managed feeds. (Available in Early Availability mode)

Resolved Issues

N/A

12.5.1.8141

Release Date

13 February 2026

New Features

N/A

Enhancements

N/A

Resolved Issues

  • P81-99418 - Agent takes a long time to open when DNS addresses are blocked on the local firewall.

  • P81-89899 - Agent fails to parse DNS packets, causing issues with Split Tunneling.

12.3.0.7524

Release Date

20 January 2026

New Features

N/A

Enhancements

  • Threat Prevention Security Profiles - These profiles introduce flexible security enforcement. Administrators can now define enforcement behavior and configure key Threat Prevention blades—including Malware Protection, Anti-Bot, and Threat Emulation—to align with their security posture and operational needs (Available in Early Availability mode)

  • Data Loss Prevention (DLP) Enhancements

    DLP now includes:

    • Data Type Manager for fine-tuning data types.

    • A new Services column in the DLP policy for applying rules based on URL categories, applications, and custom URLs.

      These enhancements provide greater granularity and more precise enforcement.

  • Threat Prevention Exceptions - Administrators can now define granular exceptions for specific URLs or files, using SHA-256 identifiers. This provides precise control to handle trusted resources and to reduce false positives.

Resolved Issues

  • P81-86793 - User couldn't connect to VPN although Always-on was enabled

  • P81-83839 - Agent failed routing Split-tunneled traffic correctly

12.2.0.6683

Release Date

19 November 2025

New Features

N/A

Enhancements

  • Admins can now hide the Reset Agent button in the agent UI, preventing end-users from resetting the agent themselves

12.1.0.6369

Release Date

29 October 2025

New Features

N/A

Enhancements

  • Idle Device Detection and Automatic Sign-Out - The SASE agent now detects unattended devices and disconnects those users from your private resources, thereby protecting company's resources.

  • Renamed application name from Perimeter81.app to Harmony SASE.app

Resolved Issues

  • P81- 81220 - Agent IA certificate installation requires admin’s credentials

  • P81-84212 - Frequent agent disconnections from the network

12.0.0.6063

Release Date

29 September 2025

New Features

N/A

Enhancements

N/A

Resolved Issues

  • P81-75099 - User cannot sign in to agent due to DPC failure

12.0.0.6019

Release Date

8 September 2025

New Features

N/A

Enhancements

  • Multi-language Support - The agent now supports multi-language mode and is fully localized in French. Users can set the language through:

    • User settings

    • Automatically by the OS language

    • Installation parameters

  • Device Posture Check (DPC) - A new DPC feature offers full device certificate validation. Administrators can now verify authenticity, validity, and private key matching to strengthen overall device security and compliance

  • Granular DLP Policy Control - Enhanced DLP policy granularity by adding a new dimension - service. It allows administrators to select web categories, URLs or applications (Available in Early Availability mode)

Resolved Issues

  • P81-77570 - Wrong Split-tunnel routes creation while using OpenVPN

  • P81-77781 - Agent fails to search system domains through, causing DNS to fail unless using FQDN

11.7.0.5477

Release Date

6 August 2025

New Features

N/A

Enhancements

N/A

Resolved Issues

  • P81-69837 – Split-tunnel traffic goes through VPN tunnel

11.7.0.5310

Release Date

4 August 2025

New Features

N/A

Enhancements

  • Added Data Loss Prevention (DLP) support for file uploads to detect and block sensitive data exfiltration (Available in Early Availability mode)

  • Introduced Tenant Restrictions to control user access to approved Microsoft Office 365 and Google Workspace tenants. This helps to prevent data leaks and shadow IT (Available in Early Availability mode)

  • Enhanced Application Control granularity with new actions to block file uploads to Box and Google Drive (Available in Early Availability mode)

  • Agent to Platform communications have transitioned to port 443, enabling user policy updates and usage monitoring even on restricted networks.

Resolved Issues

  • P81-64450 – Regional Private DNS suffix does not match Harmony SASE suffix

  • P81-71325 – FQDN entries are not working while using split-tunnel

11.6.1.4855

Release Date

10 June 2025

New Features

N/A

Enhancements

N/A

Resolved Issues

  • P81-70427 – Private access connection lost in changing network event

11.6.0.4498

Release Date

28 May 2025

New Features

N/A

Enhancements

  • A new option allows SASE agent's Internet Access protection to be disabled when the device is connected to a secured trusted network, to avoid duplicate traffic inspection.

  • Device isolation from Local Area Network (LAN) is now available as a new option to enhance device security. (Available in Early Availability mode)

  • Customization of Block/Warn pages is now available, allowing tailored messages for end-users.

Resolved Issues

  • P81-63994 – Automatic user sign-out triggers internet disconnection

  • P81-68913 – Split Tunnel FQDN entries resolve issues

11.5.0.4178

Release Date

1 April 2025

New Features

N/A

Enhancements

  • A new option is available to install the SASE agent, enabling Internet Access security to start working out of the box without user interaction.

  • The new Application control security engine allows managing and restricting applications on end-user protected devices.

  • URL Filtering Allow logs - SASE now collects and stores Allowed end-user browsing history in Admin portal.

  • The Agent anti-tampering feature now allows administrators to enforce an admin code requirement to uninstall the SASE agent.

  • URL Filtering, Malware Protection, Anti-Bot, and Threat Emulation logs are now available on Events & AIOps and in a new Unified Log viewer screen. These logs can also be exported to SIEM systems via Events & AIOps.

Resolved Issues

  • P81-52669, P81-62196 - Unable to access specific internal resources (DNS resolve error)

11.2.1.3411

Release Date

22 January 2025

New Features

N/A

Enhancements

  • Enhanced Trusted Network capability, now supporting the use of an HTTPS server and a TLS certificate.

  • Implemented a comprehensive update to the Malware protection engine.

  • New Anti-Bot security engine detects and prevents access to malicious URLs.

  • New Threat Emulation engine uses connected sandboxes to prevent multi-stage attacks at the earliest available stage.

Resolved Issues

  • P81 - 51175 – SWG not active after reboot
  • P81 - 54570 – Some deny logs do not appear in management platform

11.0.10.2696

Release Date

21 October 2024

New Features

N/A

Enhancements

  • Added support for wildcards in URL filtering rules

  • Renamed installation file from Perimeter81_10.x.x.xxxx.pkg to Harmony_SASE_11.x.x.xxxx.pkg

Resolved Issues

  • P81-51175 - Agent failed to start URL filtering after reboot

  • P81-50195 - Agent blocked downloads from IBM aspera

  • P81-37249 - User can't run FaceTime calls when URL filtering feature is enabled

11.0.1.2339

Release Date

28 August 2024

New Features

N/A

Enhancements

N/A

Resolved Issues

  • Mitigation for OpenVPN vulnerability (CVE-2024-1305)

  • P81-50980 - Custom URL SWG allow rule mismatch

11.0.0.2227

Release Date

7 August 2024

New Features

N/A

Enhancements

  • Implemented a comprehensive update to our Web filtering security engine.

  • Rebranded the taskbar icons.

  • Rebranded Block, Warn, and Malware Protection pages.

Resolved Issues

  • P81-37479 - Quick access UI disappear

  • P81-37717 - Failed to connect to private access network

  • P81-38526 - Agent memory usage

  • P81-39300 - Agent frequent disconnects

  • P81-40851 - Can't remove Trusted Wi-Fi from Trusted network list

  • P81-46855 - Changing network requires device admin's permission

  • P81-46907 - Agent unexpected crashes

10.5.0.1476

Release Date

29 March 2024

New Features

Secure Web Gateway (which includes Web Filtering and Malware Protection) now stays active even when the user is signed out of the agent, using the most recently cached web filtering policy. The user interface has been updated to show that the SWG is enabled in this situation. If allowed by the admin, the SWG can be turned off by quitting the agent.

Enhancements

  • The agent supports the new European Data Residency instance of Harmony SASE, which will be launched in April. The data residency region can be configured when installing the agent using a new 'region' parameter, or by switching to it from the platform sign-in page when signing in to the agent.

  • Agent logging events have been moved to a new, robust and more scalable infrastructure.

Resolved Issues

  • P81-37479 - UI is hidden on mouse cursor move when an application is running full-screen in the background

  • P81-37735 - Unable to connect to the agent when Mac has Homebrew installed

10.4.2.1198

Release Date

29 January 2024

New Features

N/A

Enhancements

The Perimeter 81 agent is now rebranded to Check Point - Harmony SASE.

Resolved Issues

N/A