Unified Endpoint Management 26.1.0
Table of Contents
About this Release
Matrix42 Unified Endpoint Management 26.1 provides new and improved features that have been implemented. During the development of this version, we have been focusing on valued feedback from our customers and partners to provide an ideal feature selection.
In order to support the modernized Enterprise Service Management Platform (ESMP) several components were updated which are not compatible with older versions of the ESMP prior 26.1.
System Requirements
Please refer to the System Requirements document.
Overview
New Features
- Updated Insight Dashboard
- UEM Patch & Vulnerabilities Enhancements
- Allow Qualification of PXE-discovered Computers
- Add New Computer Dialog
- French, Italian and Spanish translations
New Improvements and Changes
Changes after initial Release
New Features
Please find all new Unified Endpoint Management features for 26.1 below.
Patch Catalog Re-sync
- When performing an update from a version prior UEM 25.4.0.42 (16.01.2026) the added reset of the Patch Catalog sync will initiate a full synchronization with the next scheduled catalog update to ensure all CVE data is updated correctly.
The next catalog sync is a full synchronization and will take some time and cause some system load. All subsequent synchronizations will be differential again.
Updated Insights Dashboard
The operating system widgets are now moved to a separate tab of the Insights dashboard.
Two new widgets have been added to provide a more comprehensive overview of all endpoint management-relevant information and to allow instant action via drill-down.
- Not Qualified Computers – Last 2 Days: Displays computers that have recently registered via PXE.
- Agent Suspended: Shows devices where the UEM Agent is currently suspended. Possible reasons include pending Windows reboots or internal UEM Agent suspension due to:
- Activated presentation mode
- Paused
- Suspend mode
UEM Patch & Vulnerabilities Enhancements
Patch Management information from Empirum is greatly enhanced and allows users to easily get the information they need based on the great data navigation and dashboard capabilities of the ESM platform. The updated Patch & Vulnerabilities section contains now the following feature set:
Updated Dashboards and Reports
- Renamed the "Patch & Vulnerabilities" dashboard to "Insights" as a sub-item under "Patch & Vulnerabilities".
- New Patch Status Report provides an overview of a patch including a list of computers where it is installed or detected as missing. The report can be printed or subscribed to get an updated email on a regular base.
- New metric widgets are added to the Patch & Vulnerability dashboard which provide information on missing patches. A drill down shows the patches from where further details can be retrieved.
- New Computer Patch Report: Shows detailed information about the patch state of a computer. Available as the “Patch Report” action on a single computer object and pre-filtered by the selected computer.
- New Patch Catalog Report: Provides an overview of patch catalog synchronization and catalog content.
Extended Lists and Previews
- Changed the navigation item "Patch" to show a list of patches without the relation to vendor and product to allow better handling and correct counting of patches.
- Added a "Product View" tab to the Patch grid for easy navigation and grouping based on vendor, product and version.
- Update of the Patch grid:
- Adjusted the column width and which columns are shown/hidden by default
- Added quick filters based on the patch vulnerability scoring
- VRR and CVSS numbers 7 or higher are displayed in red
- The Patches and Service Pack Preview enumerates all computers, clearly indicating their update status—whether the relevant patches and service packs are installed or missing.
- The affected Product Name is added to Patch status list.
- Endpoint Devices preview now shows in the Patch Status tab details of the installed and missing patches and service packs.
- The preview for patches now shows the related CVEs in a list. Selecting a CVE shows the new CVE preview.
New Vulnerabilities Navigation Item provides additional CVE Information
- A new navigation item “Vulnerabilities” provides details about CVEs linked to patches in the catalog. The preview allows opening the related CVE and NIST pages in external sources. Quick filters based on the CVSS and VRR score are available.
See the UEM Patch and Vulnerabilities knowledge base article for more information.
Allow Qualification of PXE-discovered Computers
The navigation item "Not Qualified Computers" is a sub-item of "Endpoint Devices" which lists devices registered in Empirum as "Not Qualified" via PXE. The "Qualify Computer" action opens a prefilled dialog (using MAC address and UUID) for creating the computer object; once saved with missing details, it qualifies automatically and is removed from the list.
Handling in Empirum
When devices register themselves in Empirum as not qualified objects they will automatically created in UUX. Removing them in Empirum also removes the corresponding entry in UUX. Qualifying the objects creates a new computer in Empirum and UUX and removes the entry in not qualified objects in both systems.
Service Bus messages are used to create or remove entries in “Not Qualified Computers” in UUX.
Add Computer Dialog
When adding a new computer, the UUID and Inventory ID can be specified as properties and will also be transmitted to Empirum.
Adding a computer which has a primary MAC address already used is not possible in UEM anymore. If this is required the Asset Application allows this. This is similar to the already existing check of name and domain.
New: When saving the “Add Computer” or "Qualify Computer" dialog the system will check if the Empirum API is reachable and provides a message if any error is returned.
French, Italian and Spanish translations
The UEM Extension is now translated to French, Italian and Spanish.
Bug Fixes
- PRB39220: Extremely High System Load caused by ESB. Error fixed when patch status message from Empirum contains data of patches which were not yet synchronized in ESMP.
- PRB38985: For some objects, no domain is passed in the URL. ShowLog then reports “Computer not found” instead of displaying logs.
- PRB39220: Extremely High System Load caused by ESB. Error fixed when patch status message from Empirum contains data of patches which were not yet synchronized in ESMP.
- PRB39049: Improvement for Add/Remove Objects to/from Assignment activities and better Error handling
- Fixed DisplayExpression in preview for Patch & Vulnerabilities > Patches
- Fixed DisplayExpression in preview for Patch & Vulnerabilities > Service Packs
- Fixed UEM action audiences
- Fixed: Without NT4 domain name set in domain data the user can not create a computer in UEM. The Domain name used to create the computer in Empirum is now taken from the domain name if the NT4Domain field is not set (EntraID/AAD domains).
- Fixed: In Endpoint Devices navigation Windows Server 2025 is shown as Undefined in the Operating System column. Windows Server 2025 is added to UEMOperatingSystem Pickup and Service Bus model (requires updated Empirum and Silverback sender to be filled correctly).
- Fixed an issue where the Windows 10 and 11 device version dashboard did not apply the Patch and Vulnerability date filters
- Fixed exception when parsing missing data from Intune API
- Fixed cases of failed Patch Status import (SQL date time being out of range)
- Fixed all four “Missing Patches” widgets on the Patch & Vulnerability dashboard to also use the computer status filter.
- Fixed Patch Scan runs and Patch fix runs widgets on the Patch & Vulnerability dashboard to count only one entry per computer.
- "Delete" action removed for read-only entities
Improvements and fixes after initial release
- No changes after initial release yet.