April

New Features

• Added API support for managing Zero Trust applications. For more information, refer to the API documentation.
• Updated the default bypass rules in Harmony SASE to align with the standard configuration used in Check Point Quantum Security Gateway. See sk163595.
• Harmony SASE network or user managers inherit their role from Check Point Infinity Portal. We now support service roles for network and user managers.
• Firewall events are now presented in the Infinity Events application in the Infinity Portal (Early Availability). This enables customers to consolidate logs from all Infinity Portal applications in a single location.

Enhancements

• Harmony SASE strengthens security for locally defined users by enabling two-factor authentication (2FA) by default for newly created tenants.
• Group naming becomes more flexible now, allowing names to include special characters for groups synced via SCIM.
• Firewall policy action names and images are aligned with Check Point’s terminology and standards, using Drop and Accept, instead of Deny and Allow.

Bug Fixes

• P81-64882 - Resolved an issue where enabling two-factor authentication (2FA) for Azure IDP disrupted the login flow.
• P81-63630 - Firewall events log page fails from time to time.
• P81-66970 - Admin user deletion is audited on the admin activity log.
• P81-67091 - Resolved an issue affecting groups synchronized from Azure, where users were not being added to groups as expected, and existing group memberships were removed.