What’s new in this release

Overview of the enhancements made in the current release of MCM and BigFix Mobile.

MCM and BigFix Mobile v3.2 updates

Enhanced App Catalog feature
Enhanced App Catalog feature to enable users to easily include additional app types into the app catalog. For more information, refer to Adding a Windows app.
Enhanced Application Configuration and Management
This release brings significant improvement to the application management feature. Both BigFix MCM and BigFix Mobile now support more complex use cases for deploying applications to MDM devices. For example, you can now install the same application with different configurations for different use cases. This supports various types of applications including macOS VPP apps, macOS private apps (MCM-hosted .pkg files), Windows public app store apps, Windows private apps (MCM-hosted .msi files). As a result, the following changes have been implemented:
  • The App Store app policy, which previously only supported mobile platforms before MCM v3.2, has now been enhanced to support Windows and macOS. For details, refer to App Deployment Policy.
  • App Deployment Policy allows to configure additional configuration options for Windows native apps.
  • The mobile app configuration, which previously allowed you to configure managed configurations on mobile platforms before MCM3.2 has now been enhanced to support Windows and macOS managed configurations as well, For details, refer to App configuration.
  • Policy Groups has been enhanced to support native macOS and Windows apps within App Deployment Policies, providing per-app deployment options.
Enhanced Identity Management

With this enhancement, you now have the ability to filter devices by Primary User and Enrollment Type directly from the Device list. This feature is also available on any other page where you need to select devices for targeting and performing an MDM task. For more details and instructions, refer toSelect target devices.

Email configuration management
BigFix MCM and BigFix Mobile now supports Email configuration management. This provides Admin users with the ability to install and set up email applications on Android, Apple, and Windows devices. With this, users can verify their identity, connect to the corporate email system, and synchronize their work email accounts seamlessly. For more information and step-by-step instructions, refer to Email configuration management.
Virtual Private Network (VPN) configuration management
With this release, BigFix MCM and BigFix Mobile introduces VPN configuration management. This equips organizations to manage and configure VPN settings on the enrolled Apple and Windows devices, ensuring secure remote access to corporate networks. IT admins can control which apps use the VPN and enforce a connection requirement for network access. For more detailed information, refer to VPN management.
WiFi configuration management
BigFix MCM and BigFix Mobile offers WiFi configuration management, allowing administrators to control and configure wireless network settings on enrolled Windows and Apple devices. This feature provides organizations with a secure and reliable wireless network infrastructure, while also offering flexibility for users to connect to authorized networks. For more detailed information, refer to Wi-Fi configuration management.
App policies to uninstall or block Windows and Android apps
  • You can uninstall Windows Store apps using the remove policy action.
  • Using custom policy, you can prevent an app from being installed on Android devices. For more information, see Application management.
Miscellaneous updates
  • MDM debug tool has been enhanced to return decoded output for Windows and Android to make it easier to debug. This response used to display base64 encoded value previously.
  • Variable substitution in Windows policies: You can use the following variables in your custom policies, which will be substituted with actual data while deploying the policy on to the Windows devices.

    • {{UserName}} :- Users name will be fetched from the configured identity service and substituted in the policy on deployment

    • {{EmailAddress}} :- User email will be substituted in policy

    • {{UserPrincipalName}} :- User principal name will be substituted in policy

  • Enhanced BESMDMldaputil to more effectively troubleshoot LDAP and Azure connectivity. The following new options are added to the functionality:
    • -gu : get all users in a group
    • -sg : Set groups in AD/AAD
    • -ma : Get master attribute list
    • -sa : Set attributes
    • -ua : Set user attributes in AD/AAD
    • -ubg : Get user bitmap group
    • -ug : List all group names of the user
    Pagination to limit the number of records displayed is supported for -f, -gu, and -ug options. For more details, refer to Troubleshooting LDAPS connection.