February

Updated
  • Updated on Mar 3, 2026
  • Published on Mar 2, 2026
  • 1 minute(s) read
  • R
 Prev Next

Early Availability

  • Updatable Objects Support in Split Tunneling

    Split Tunneling rules can now reference Updatable Objects, which are dynamically maintained network objects that automatically update based on vendor-managed or predefined feeds. This enhancement eliminates manual IP address and FQDN maintenance and ensures that Split Tunneling policies remain accurate as vendor endpoints change.

    Minimum Agent Version: Windows: 12.5

    For more information, see Updatable Objects.

  • Pre-Login Authentication for Windows

    Administrators can now enable a secure tunnel before OS login using second-device authentication. This enables seamless access to private organizational resources, such as Active Directory, when users work remotely or outside the corporate network.

    Minimum Agent Version: Windows: 12.5

    For more information, see Pre-Login Tunnel Connection for Windows

New Features

  • New Built-in Role – Security Manager

    A new Security Manager built-in role is now available in Harmony SASE. This role enables organizations to delegate security operations and monitoring. It is available to both direct and MSSP customers.

    Users assigned with this role can:

    • Access Internet Access configuration

    • Define Data Loss Prevention (DLP) policies

    • Manage Objects configuration (Addresses and Custom URLs)

    • View and investigate Security Events

    For more information, see Member Roles and Permissions.

  • New Harmony SASE Point of Presence – Hong Kong

    Harmony SASE has expanded its regional coverage with a new Point of Presence (PoP) in Hong Kong.

    For more information, see Regions and Points of Presence.

  • Public API Support for FQDN Object Type

    Administrators can now manage Fully Qualified Domain Name (FQDN ) address objects through the Public API.

    This enhancement enables:

    • Programmatic creation of FQDN objects

    • Retrieval of FQDN object configurations

    • Updates to existing FQDN objects

    • Deletion of FQDN objects

    For more information, see the API documentation.

  • Tunnel Down Notification via Playblocks

    Administrators can now configure automated notifications when a network tunnel goes down.

    Notifications can be delivered through:

    • Slack

    • Microsoft Teams

    • Email

    • SMS

    Supported capabilities include:

    • Immediate alerts when a tunnel state changes

    • Consolidated summary notifications at configurable intervals

    • Configurable silence windows to reduce alert noise

    • Exclusion of specific tunnels from monitoring

    Availability: Available for Infinity Portal tenants in US and EU regions.

Enhancements

Tenant Restrictions – Domain Validation

Tenant Restriction rules now enforce the use of domain values in entries.

This enhancement:

  • Prevents the use of invalid formats

  • Improves policy consistency

  • Reduces configuration errors

  • Strengthens enforcement accuracy

For more information, see Tenant Restrictions.