v2.15.0 - Dark and Stormy

Hey everyone,

Version 2.15.0 is out now and has a big swath of requested features fulfilled. We've also fulfilled our 1000nd feature request so that's great news to share!

This release contains an easy way to list your named locations, giving you insight into your Conditional Access configuration even more. Another new feature is the capability to create new dynamic groups. We didn't just want to leave it at that and made Dynamic Group templates. You can now easily create templates of any type of group and deploy those across your tenants.

This release also contains more GDAP migration assistants. Microsoft is working on allowing pre-consent in your tenants, but we've added a method to easily generate the consent URLs. If you've deployed GDAP you can use this to add any application to your client tenants.

Special thanks for the bug reports in this release goes out to @wilhil that reported an annoying copy user bug. We've also tackled an issue with license exclusions not always working.

As always we thank our release sponsors, OITVOIP, NinjaOne, Immybot, Huntress, HaloPSA, Deskdirector, Datto and Hudu.

The changelog below contains only the most important changes, if you have any questions, check out our discord at discord.gg/cyberdrain.

What's Changed

• New Alerts toggles and Alert Queue table by @JohnDuprey in #1137
• Allow deployment of group templates
• New Group Templates
• Application Approval URL generator
• Fixed issue with Distribution groups not being editable
• Fixed issue with Sharepoint URL being incorrect at times.
• Fixed various spelling errors
• Fixed issue with Office Deployment
• Fixed issue that license exclusions didn't always work
• Added state in conditional access overview
• Fixed various issues with DNS lookups by @JohnDuprey
• Fixed issue with Direct URL link to tenant by customerId by @AlexOSIT in #1155
• Dev to release by @KelvinTegelaar in #1157

New Contributors

• @AlexOSIT made their first contribution in #1155

Full Changelog: v2.13.0...v2.15.0

V2.13.0 - Hill Country Sunrise

Hey everyone,

Version 2.13.0 is out now and has many bug fixes, and a nice group of new features. This release allows you to easily execute device actions such as queing a remote wipe, an autopilot reset, or a defender scan. This release allow helps in setting up the EDR components of Windows Defender. We've also added new alerts; You can now alert on clients that have Conditional Access licenses available, but no policies, and you can alert on expiring secrets and certificates.

We've also fixed a bug in the Basic Authentication report that combined duplicate entries, and we've made a new "Sign in logs" report option.

Due to the new device options, you might have to add permissions to your SAM application, after an update we recommend to perform a Permissions Check

Special thanks to our regular contributors, @JohnDuprey. and @knightian.

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, HaloPSA, and Deskdirector and since recently added; Hudu.

The changelog below contains only the most important changes, if you have any questions, check out our discord at discord.gg/cyberdrain.

What's Changed

• fixed small % values in OneDrive usage report being shown as no data by @knightian in #1109
• New Alerts by @JohnDuprey in #1122
• Fixed an issue with SAM wizard not applying all permissions
• Fixed an issue with Permissions check timing out
• Fixed an issue with permission check errors
• General improvements to returned errors by both permissions and access check
• Added EDR to Defender Deployment
• Visual fixes to MFA push messages to clearly show failure.
• Fixed a bug with automapping not working when multiple values got passed
• Added deployment template WEBSITE_RUN_FROM_PACKAGE for new deployments
• Added sign in logs reporting
• Fixed export of standards report to no longer show object name
• Improvements to SAM wizard; made Wizard a mandatory field.
• Dev to release by @KelvinTegelaar in #1130

Full Changelog: v2.12.0...v2.13.0

v2.12.0

Hey everyone,

Version 2.12.0 has been released and it has a bunch of fixes and some minor new features in store. One of the most noteable new features is the filter button for each table. We're adding some filters to each table to make it easier for your to find your data, and with the examples it should be easy enough for you to create your own filters.

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, HaloPSA, and Deskdirector.

A special shout-out to our newest sponsor, Hudu! Hudu is a MSP documentation system and I recommend you check them out at https://www.hudu.com/.

The changelog below contains only the most important changes, if you have any questions, check out our discord at discord.gg/cyberdrain.

What's Changed

• New Standard: Remove Legacy MFA if SD or CA is active by @JohnDuprey in #1095
• Filtering options on tables
• Resolved issue with BPA not loading when large tenants are present
• Resolved issue with Domain Analyser not running when data for one tenant was empty
• Added option to allow groups to receive external email under add groups
• Added option to allow groups to receive external email under add groups
• Added button to List Tenants page to show and hide the direct links
• Fixed bug with adding/removing templates
• Fixed bugs with loading screens
• Fixed many small interface bugs

Full Changelog: v2.11.2...v2.12.0

v2.11.2 - Refill

This release is a hotfix release and solves the following:

• Dashboard not always loading
• files not always loading due to path not found.

What's Changed

• HotfixL: fixed error with shipping input by @KelvinTegelaar in #1074
• Tenant List errors by @JohnDuprey in #1076
• Tenant List OffCanvas by @JohnDuprey in #1079
• Hotfix by @KelvinTegelaar in #1080

Full Changelog: v2.1.11.0...v2.11.2

v2.11.0 - Tom Collins

Hey everyone,

This a big release, with version 2.0.0 of our API. We've been working hard in the background to get rid fo file-writes and move over to Azure Table Storage. This release does that, and introduces a much faster performance mode thanks to Run As Package mode. This is also the last release to require your manual interaction because of that!

The new features for this release are Defender Deployment, using a single wizard to deploy the most important settings for Defender, a new overview for Mailbox Rules, and Named Location deployment for Conditional access. We also have a bunch of small quality of life improvements, such as setting an Out-Of-Office directly from the user menu.

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, HaloPSA, and Deskdirector.

The changelog below contains only the most important changes. There's also some interaction required.

Required interaction

This release we strongly recommend you to move to Run From Package mode. Run From Package disables all writes to the Function Host itself, making it much faster from cold starts, and saving more Azure Credits.

How to migrate to "Run From Package" mode(and enable automatic updates of the API) manually:

1. Go to CIPP
2. Visit each page you want to save the contents of, e.g. Standards, Intune Templates, Applications, Alerts, Visiting the page automatically migrates the data to Azure Tables.
3. Go to Settings -> Backend
4. Click on "Function app Configuration"
5. Click on "New Application Setting"
6. Add an application setting with the name "WEBSITE_RUN_FROM_PACKAGE" and the value "1"
7. Click Save at the top
8. Click on Deployment Center
9. Click on "Disconnect"
10. Select the source "Github"
11. Login if required
12. Select the Organisation, Repository, and Branch you want for your CIPP-API. Click on "Add a worklow". Do not change any other settings.
13. Click save at the top.
14. Restart the Function App

How to migrate to "Run From Package" mode(and enable automatic updates of the API) using our migration script:

1. Go to CIPP

2. Visit each page you want to save the contents of, e.g. Standards, Intune Templates, Applications, Alerts, Visiting the page automatically migrates the data to Azure Tables.

3. Go to Settings -> Maintenance
   4.Run Enable-FunctionAppgithubActions.ps1

4. Go to your CIPP API Github page and execute the newly added action.

5. Restart the Function App

What's Changed

• Add Mailbox Rules overview
• Fixed a bug with listing usernames
• Added Named Location Deployment
• Added Defender Deployment
• Added setting out-of-office via user menu
• Fixed issue with duplicate requests on view user screen
• Fixed issue with BEC not always loading. Data is now cached and can be refreshed on demand.
• Added export of CustomerId to Tenant List
• hotfix by @KelvinTegelaar in #1056
• Update README.md by @ee61re in #1059
• Dev to release by @KelvinTegelaar in #1070

Full Changelog: v.2.10.0...v2.1.11.0

v2.10.0

Hey everyone,

For the new release of CIPP we have a couple of required interactions, so pay close attention to these release notes!

This release contains many bug fixes and backend work by @JohnDuprey - John has helped us move away from file storage to table storage and tenants are now stored in that table too. With the new module introduction we have a performance boost too so we're now storing our tenant cache inside of the table storage too.

John deserves a lot of praise for this so head over to Discord to give him a big thank you!

This release also contains some visible new features; more reports have been made available for the All Tenants overview. You can now get a license report, MFA report, Basic Authentication report for all tenants. It does require a little bit of waiting as these scripts can take their time.

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, HaloPSA, and Deskdirector.

The changelog below contains only the most important changes. There's also some interaction required.

Required interaction

I'm very sorry, but excluded tenant lists must be rebuilt :( As we're now storing tenants inside of table storage. If you're an active user of the application we also highly recommend to remove the caches by hitting the Cache Clear button in settings.

What's Changed

• Fix capitalisation for City label by @benhopperau in #1053
• Add CW Command agent by @JohnDuprey in #1052
• Moved to table storage for most items by @JohnDuprey
• Added option to Webhooks for generic webhooks (use any URL, it'll send a JSON payload) by @KelvinTegelaar
• Added "AllTenants" features to more locations
• Fixed multiple typos and performance issues(Sorry, vague I know. See full commit log for all changes) by @KelvinTegelaar
• Dev to release by @KelvinTegelaar in #1054

New Contributors

• @benhopperau made their first contribution in #1053

Full Changelog: v2.9.0...v.2.10.0

v2.9.0 - Screwdriver

Hey everyone,

For the new release of CIPP we have a couple of required interactions, so pay close attention to these release notes!

This release contains many bug fixes, over 20 implemented feature requests and quality of life improvements and many cool features. You now gain the ability to create and edit Distribution Groups and Mail Enabled Groups. You can also pull a full list of all tenant licenses now using a new queuing system - This way you don't get a pesky timeout and are able to list all the tenants all at once.

This release also contains a pretty awesome new feature by @JohnDuprey - Our CIPP Maintenance script generator. This generates a script with the correct variables to perform specific tasks on your CIPP instance.

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, HaloPSA, and Deskdirector.

A special sponsor spotlight this release for HaloPSA. Halo has created buttons within HaloPSA that jump directly to CIPP pages via our deep-linking feature, making it easy to jump from a ticket, to a users mailbox permissions, overview, or even perform a BEC check directly from the PSA.

The changelog below contains only the most important changes. There's also some interaction required as this release requires some backend updates. If you're a hosted client, these updates are performed for you.

Required interaction

Our new alerts on the dashboard will help you get the most out of CIPP, such as changing to .NET4 and PowerShell 7.2 is now highly recommended; you'll notice an immediate performance increase.

Another required interaction if you want to cut down on costs is to migrate to v1 Storage in Azure. Microsoft has found a bug with their Azure Storage SMB requests that increases costs for Azure functions. This is especially noticeable with Alerts enabled.

You can cut down the costs to a near static $15,- a month by going to CIPP's settings menu -> Maintenance tab, and generating the script "Migrate-CIPP-Storage.ps1".

This script will migrate your instance to v1 Storage. Click the "Create Link" button and execute the link you get in an Azure CloudShell. This will not migrate all settings so be prepared to recreate your exclusions.

I hope you all enjoy this release.

What's Changed

• UI/UX Love + a few bug squashes by @knightian in #1001
• Fix for inconsistent dates cross platform by @knightian in #1002
• Fix tooltips logs by @knightian in #1015
• Maintenance Scripts by @JohnDuprey in #1019
• Maintenance Script tweaks by @JohnDuprey in #1023
• Added Exchange Quarantine Management
• Added Distribution List Management
• Made multi-select available for groups
• Made multi-select available for mailboxes
• Added AllTenants License overview
• Fixed a frontend bug that caused NextStandards run to not display
• Dev to release by @KelvinTegelaar in #1029

Full Changelog: v2.8.0...v2.9.0

v2.8.0 - Americano

Hey everyone,

This release has had one large focus; performance and cost. We've been working hard on finding ways on boosting the performance for our static web apps, and increasing stability in a lot of places. We've also put in some long awaited feature requests.

Of course we also have many bug fixes in this release big and small, so check out the complete changelog, if you have any bugs, report them :) Let us know your comments on this release in our discord; https://discord.gg/cyberdrain

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, HaloPSA, and since just this week; DeskDirector. DeskDirector is also one of our release sponsors! remember to check them out, as their sponsorship is what makes creating this application possible.

The changelog below contains only the most important changes. There's also some interaction required as this release requires some backend updates. If you're a hosted client, these updates are performed for you.

Required interaction

Our new alerts on the dashboard will help you get the most out of CIPP, such as changing to .NET4 and PowerShell 7.2 is now highly recommended; you'll notice an immediate performance increase.

Remember to change to .NET4 as the first step, and perform everything else later.

What's new

• Security incidents by @knightian in #976
• MSP App - CW Automate by @JohnDuprey in #983
• Mailto links in markdown must be URL encoded. by @technion in #996
• Performance increases all around the application
• Create templates from existing Intune Policies
• Better error handling for Exchange Tokens
• Release Candidate for the SAM Setup Wizard. our setup no longer expects manual entry via ARM template, but always via the interface.

New Contributors

• @technion made their first contribution in #996

Full Changelog: v2.7.0...v2.8.0

v2.7.0 - Californication

Hey everyone,

This is a huge release, and I'm very happy to announce one of our new sponsors; HaloPSA. Halo has decided to be a release sponsor for CIPP, and they chose the perfect moment as this release might just be the most exciting one yet. One of the awesome new features is the ability to deploy software commonly used in MSPs; your RMM, Automation platform, or your security software.

We're always looking for new sponsors; do you want your vendors software added to the list? Have them sponsor CIPP and we'll add them to the deployment wizard!

Of course we also have many bug fixes in this release big and small, so check out the complete changelog, if you have any bugs, report them :) Let us know your comments on this release in our discord; https://discord.gg/cyberdrain

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot,Huntress, and our new sponsor Halo for sponsoring us for this release, as their sponsorship is what makes creating this application possible.

The changelog below contains only the most important changes. There's also some interaction required as this release now uses Azure Table Storage, which should decrease the cost of alerting substantially.

Required interaction

If you use alerting, you must setup the alerting e-mail and webhook once more via Settings -> Notifications. This is due to the config location being moved and the way we handle these settings.

If you use License Exclusions, you must visit the license exclusions screen in settings -> Excluded Licenses to check if all your exclusions are in place.

New Features:

• Deploy MSP software - Deploy your RMM, Huntress Agent, or others via a simple wizard by @KelvinTegelaar
• Allow editing of Standards by @KelvinTegelaar
• Use Azure Storage Tables for logging and settings by @JohnDuprey and @KelvinTegelaar
• Many new Standards: Sharepoint Standards to set sharing settings and limits, Exchange Standards, and more
• Allow Secure App Model Wizard to open new tabs
• Added Quad9 as a third DNS resolver option by @knightian in #960
• Application Secret Alerts by @JohnDuprey in #969

Bug fixes:

• Fixes minor issues with Add user and tenant exclusion by @KelvinTegelaar in #946
• Fixed an issue with alerts not being shipped if setup was not done correctly.
• Fixed an issue with offboarding wizard giving the incorrect text about deleting rules/devices
• Fixed an issue where page reloads caused the scroll bar to vanish
• fixed issues with logging and selecting the correct log/defaults

Full Changelog: v2.6.0...v2.7.0

v2.6.0 - Tequila Sunrise.

Hey everyone,

Thank you all our contributors and CIPP team that worked on this release. This release is is feature packed. We've tackled a bunch of Feature Requests. We also attacked our frontend with the help of Ian, a frontend dev that freelances for us.

Let us know your comments on the frontend in our Discord, https://discord.gg/cyberdrain

Of course we also have many bug fixes in this release big and small, so check out the complete changelog, if you have any bugs, report them :)

We especially like to thank our release sponsors, OITVOIP, NinjaOne, Immybot, and Huntress for sponsoring us for this release, as their sponsorship is what makes creating this application possible.

The changelog below contains only the most important fixes, for more information, check out the full changelog. Items without a PR reference have been made by direct commits.

New Features

• Added the ability to add shared Mailboxes by @KelvinTegelaar
• Added an Office Deployment Wizard @KelvinTegelaar
• Added Consented Applications Report, giving you the ability to see which apps are activated inside of a tenant @KelvinTegelaar
• New Standard: Allow Users to send from their Alias
• New Standard: Disable Daily Insight/Viva Reports
• Require admin consent for applications (Prevent OAuth phishing.) has been updated to allow users to give consent to selected applications. @KelvinTegelaar
• New interface in both Light and Dark mode.

Bug Fixes

• Fixed bug with SAM Wizard that didn't apply at second step.
• Fixed SWA timeout bug, now forwarding you back to the login page when your session times out
• Fixed Conditional Access bug where locations didn't always show up.
• Many more, see full change log.

Full Changelog: v.2.3.0...v2.4.0