ControlOne now gives partners more flexibility in how bridges respond to connectivity disruptions, with configurable fail open sensitivity settings, preset recovery options, and advanced health check controls. Portal UI improvements, clearer gateway capacity displays, and corrected tunnel encryption labels also make configuration easier to review and manage.

What's New

• Fail open sensitivity settings can now be configured at the bridge and tenant levels using preset options for 30 seconds, 2 minutes, or 5 minutes.
• Fail open presets automatically apply the appropriate health check intervals and thresholds, making recovery behavior easier to understand and configure.
• Custom health check endpoints and detailed probe parameters can now be configured at the bridge or tenant level for more granular tuning.
• Advanced fail open settings include probe intervals, probe counts, timeouts, and recovery thresholds.
• Site zones can now be disabled during failover, giving partners tighter management of traffic behavior during network events.
• Legacy portal pages have been updated with the current ControlOne theme and modern table components for a more consistent portal experience.
• Gateway usage displays for Unity Platform partners now show total allowed gateways rather than a separate minimum gateway count, making capacity easier to read at a glance.
• Tunnel encryption settings now display correctly on the VPN connector configuration page when GCM encryption is in use, preventing misinterpretation during setup.

Why You'll Love It

Configurable fail open sensitivity helps partners match recovery behavior to each site's uptime and traffic requirements rather than relying on fixed defaults. Preset options keep setup simple, while advanced health check controls provide flexibility for more specific environments. Clearer gateway displays, modernized portal pages, and corrected tunnel encryption labels also make day-to-day configuration easier and reduce the risk of misinterpretation.

How to Access It

These updates are live now in the ControlOne portal and are automatically applied where supported. Updated portal pages and corrected tunnel encryption labels require no action. Fail open settings and site zone failover controls are available at the bridge and tenant levels in the ControlOne portal.

Telivy now makes it easier to identify actionable Microsoft 365 security gaps, understand which fixes can improve assessment scores, and avoid duplicate compliance work across related frameworks. Cloud token reliability improvements also reduce unnecessary reconnection noise and provide clearer guidance when action is needed.

What's New

• The Microsoft 365 Overview dashboard now shows a reliable count of available automated fixes and the potential score uplift if those fixes are applied.
• The Risk tab now shows a "Fix Available" badge on Microsoft 365 findings that can be remediated from the interface for Early Access partners.
• Framework similarity scores are now visible on the frameworks screen for Early Access partners, showing the percentage of overlap between compliance frameworks.
• Microsoft 365 multifactor authentication (MFA) enforcement and legacy authentication blocking now report correctly for Early Access partners on tenants where Security Defaults are enabled.
• Cloud token health checks are more reliable, with improved token refresh handling and disconnect emails that explain why reconnection is needed.

Why You'll Love It

Clearer Microsoft 365 remediation signals help partners focus on the findings they can act on directly and understand which fixes may have the greatest impact. Framework similarity scores make it easier to identify overlap across compliance programs, reducing duplicate control work across related frameworks. More reliable cloud token handling and clearer disconnect emails also help partners resolve connectivity issues faster without unnecessary interruptions.

How to Access It

Microsoft 365 Overview updates and cloud token reliability improvements are live now in Telivy and are automatically applied where supported. The Risk tab "Fix Available" badge, framework similarity scores, and Microsoft 365 policy reporting corrections are available in Early Access through the Telivy console. Use the Enable Early Access Features instructions to get started: Enable Early Access Features

UCaaS now improves call handling across mobile, Desktop, and AutoTask-connected workflows. Android calls route more reliably to the right Bluetooth device, caller identity stays visible through hold and transfer actions, queue calls can be declined from Desktop, and PSA integration improvements give Early Access partners a more stable experience.

What's New

• Android Bluetooth audio now prioritizes vehicle and headset devices over wearables during calls, keeping audio routed to the expected hands-free device.
• Caller ID is now preserved when inbound calls are placed on hold, parked, or transferred, so users continue to see the original caller's information throughout the call.
• Queue calls can now be declined from the UCaaS Desktop app, preventing declined call center interactions from continuing to ring indefinitely.
• AutoTask integration platform list views are more reliable for Early Access partners, with improvements to sticky tabs, pagination, sorting, and contact deduplication across Contacts, Accounts, and Tickets.

Why You'll Love It

Caller ID reliability helps teams keep the right caller context through common workflows like hold, park, and transfer. Android Bluetooth routing improvements make mobile calls feel more natural in hands-free environments, especially in vehicles, while queue call declines restore expected Desktop behavior for call center users. PSA integration improvements also help Early Access partners manage records more consistently during daily workflows.

How to Access It

Caller ID reliability, queue call decline, and Android Bluetooth routing improvements are live now in UCaaS Desktop 26.17.1 and Android 26.4.3 and are automatically applied where supported. PSA platform list view and proxy connectivity improvements are available in Early Access through the UCaaS platform. Use the Managing Early Access Features instructions to get started: Managing Early Access Features

App/Play Store Release Notes

Android 26.4.3 improves Bluetooth audio routing to prioritize vehicle and headset devices over wearables, keeping call audio in the right place automatically during hands-free and mobile calls.

ControlOne now validates IPsec network address translation (NAT) settings more accurately, making VPN tunnel setup smoother for configurations with non-overlapping pre-NAT sources. Partners can complete valid tunnel configurations without false overlap errors or unnecessary workarounds.

What's New

• IPsec NAT validation now correctly handles configurations where the original IP source does not overlap with local tunnel selectors.
• Valid IPsec configurations with non-overlapping pre-NAT sources are now accepted instead of being rejected with a false overlap error.
• Tunnel setup now reflects the intended NAT behavior, reducing troubleshooting during VPN configuration.

How to Access It

These updates are live now in ControlOne and are automatically applied where supported. No action is required.

Telivy now performs more reliably across large assessments, makes compliance evidence easier to share, and keeps remediation work coordinated across Telivy and Tentacle. Mandatory review dates for accepted and resolved risks also help partners keep client compliance programs on schedule.

What's New

• HIPAA Compliance Reports are now available in Telivy. These point-in-time reports map scan results to HIPAA Security Rule safeguards and show whether each control is documented and implemented.
• Assessment creation now includes a primary industry vertical selector, with more than 20 options such as healthcare, finance, and government.
• Telivy uses the selected industry vertical to identify relevant compliance frameworks and tailor report content automatically.
• Companies can now be deleted or archived in Telivy, making it easier to keep workspaces organized as client records change.
• Accepted and resolved risk decisions now require review dates, with preset intervals that support consistent reassessment across client environments.
• Scan completion emails now include finding counts, severity breakdowns, and an AI-generated summary, giving partners a clearer view of results before they log in.
• Server-side pagination is now live across major assessment data views, helping large assessments load faster and more reliably without browser slowdowns or timeouts.
• Pagination improvements apply to installed applications, internal vulnerabilities, network hosts, security findings, browser history, browser passwords, scan targets, Microsoft 365 users and audit logs, and risk analysis.

Why You'll Love It

Large assessments are now smoother to review, with performance improvements that reduce browser stalls and timeouts in data-heavy environments. HIPAA Compliance Reports give partners a structured artifact they can share with auditors and clients, while mandatory review intervals keep risk decisions from going unmanaged. Richer scan completion emails also make it easier to understand results and prioritize follow-up before opening Telivy.

How to Access It

These updates are live now in Telivy and are automatically enabled for all partners. No action is required.

Missed-call activity can now move into AutoTask automatically, helping partners follow up with clients no matter where they work. Refreshed Voicemail and Profile Menu screens on Android and iOS provide a cleaner mobile experience, while an Android messaging fix makes everyday conversations smoother.

What's New

• AutoTask integration setup is now available to Early Access partners in the Desktop app. A guided onboarding pane walks partners through Queue, Priority, Status, and Ticket Source fields, with Settings available for updates after setup.
• Missed calls now create tickets automatically in the PSA platform for Early Access partners. Tickets include caller name, number, timestamp, direction, and Company and Contact IDs when available.
• The refreshed Voicemail screen is now available to Early Access partners on Android and iOS, with a modern list, search, expand-to-play controls, a seek bar, speaker routing, lazy-loaded transcripts, and per-voicemail actions for Call, Message, Share, and Delete.
• The refreshed Profile Menu is now available to Early Access partners on Android and iOS, with a modern profile header that shows avatar, name, extension, and SIP registration status.
• Mobile users can now upload or delete their avatar and access a redesigned settings menu for call strategy, sound and ringtone preferences, and biometric login.
• Android messaging now sends messages when users press Enter in the compose field, rather than requiring them to tap the Send button.

Why You'll Love It

Missed-call ticket creation helps partners keep client follow-up moving by reducing manual ticket work and making missed-call details visible in the PSA platform. The redesigned Voicemail screen makes it faster to review, manage, and act on voicemails without losing context, while the Profile Menu refresh gives users a cleaner starting point for managing call and notification preferences. The Android messaging fix removes a common friction point from day-to-day conversations.

How to Access It

The Android messaging fix is live now in Android 26.4.2 and is applied automatically where supported. The refreshed Voicemail screen and Profile Menu are available in Early Access on Android 26.4.2 and iOS 26.4.2. PSA integration setup and missed-call ticket creation are available in Early Access through the UCaaS Desktop app. Use the Managing Early Access Features instructions to get started: Managing Early Access Features

Moving seats is now faster and easier with a guided transfer flow, and the iOS Messages experience is more modern for Early Access partners. Reliability improvements across Android, Desktop, and the Chrome extension also address issues that affected calling, file sharing, and preference persistence.

What's New

• Transfer user seats with a guided wizard that walks partners through moving associated resources, including extensions, mailboxes, direct inward dialing (DID) numbers, and devices. The flow includes resource previews and validation before confirmation so transfers complete cleanly.
• The "Use desk phone to make calls" setting now persists across logout and login sessions in Desktop 26.15.1.
• Click-to-Dial in the Chrome extension now works reliably even when network requests to background services are blocked by content filters or network policies. This fix is included in Chrome Extension 26.15.1.
• Google Drive files now share correctly in Android messages with proper handling and a visible progress indicator, resolved in Android 26.4.1.
• A gray screen that could appear after calls ended is resolved in Android 26.4.1.
• A loading state that could persist because of a race condition is resolved in Android 26.4.1.
• The refreshed iOS Messages experience is available to Early Access partners with a cleaner thread list, updated detail view, and improved input bar for text, images, GIFs, audio, files, and links.

Why You'll Love It

The seat transfer wizard removes guesswork by showing exactly what will move before changes are confirmed, making account transitions easier to manage with confidence. The refreshed iOS Messages experience brings a cleaner, more consistent mobile messaging workflow, while Android, Desktop, and Chrome extension improvements resolve issues that could interrupt calling, file sharing, and saved preferences.

How to Access It

The seat transfer wizard, Desktop setting persistence fix, Chrome extension Click-to-Dial fix, and Android reliability improvements are live now and automatically applied where supported.

The refreshed iOS Messages experience is available in Early Access through the UCaaS platform. Use these instructions to get started: Managing Early Access Features

Keeping agents current is now easier, company records are more flexible to manage, and scan notifications provide clearer context before you log in. Reliability improvements also restore more complete password scan coverage and reduce alert noise across managed environments.

What's New

• Delete or archive companies in Telivy to keep workspaces organized as client records change over time.
• Tag assessments with a primary industry vertical from more than 20 options, including healthcare, finance, and government. Telivy uses this information to identify relevant compliance frameworks and tailor report content automatically.
• Scan completion emails now include richer context, with finding counts, severity breakdowns, and an AI-generated summary giving partners a clearer picture of results before they log in.
• Agent Autoupdate is available to Early Access partners. Telivy agents on Windows and macOS automatically check for and apply updates hourly, keeping deployments current without manual intervention. Partners can opt in through the Telivy console.
• Browser-stored password scans now run reliably again. The agent signs in to user profiles as expected during scans, restoring comprehensive password vulnerability detection in Telivy Agent v30.3.6.1 for Windows and v3.3.4.0 for macOS.
• Agent status descriptions are now accurate after in-place upgrades, resolved in Telivy Agent v30.3.6.1 for Windows and v3.3.4.0 for macOS.
• Repeated password scan alerts triggered by disabled user accounts no longer fire, resolved in Telivy Agent v30.3.6.1 for Windows and v3.3.4.0 for macOS.

Why You'll Love It

Agent Autoupdate removes a recurring maintenance task for partners managing larger deployments, while company archive and delete options make workspaces easier to maintain as client rosters change. The expanded assessment form and richer scan emails help teams act faster with better context, and Tentacle workflow support reduces duplicate remediation work across products.

How to Access It

Company management improvements, the assessment operations form, Tentacle task and POA&M workflow support, and enriched scan completion emails are live now in Telivy and automatically enabled. Agent reliability and alerting fixes are live now in Telivy Agent v30.3.6.1 for Windows and v3.3.4.0 for macOS.

Agent Autoupdate is available in Early Access through the Telivy console. Use these instructions to get started: Enable Early Access Features

Routing policy naming is now more flexible, and directory sync status messaging now gives partners clearer, more accurate guidance during sync activity. These updates help keep the ControlOne portal easier to manage while reducing uncertainty during identity provider syncs.

What's New

• Rename routing policies in the ControlOne portal to better match naming conventions across your environments. Cytracom-managed policies remain protected and cannot be renamed.
• Identity provider directory sync messaging now reflects more accurate status throughout the sync process. Status updates reflect realistic timing and clearly indicate that it is safe to navigate away while a sync continues.

Why You'll Love It

Routing policy renaming makes it easier to keep environments organized as they grow and evolve rather than working around fixed policy names. Clearer sync messaging reduces guesswork during directory syncs, so partners can move on with confidence rather than wondering whether a sync is still progressing normally.

How to Access It

These updates are live now in the ControlOne portal and are automatically enabled. No action is required.

ControlOne now gives partners direct influence over fail-open behavior, helping MSPs tune resiliency settings to match each site's connectivity and uptime needs. Hardware node visibility in the admin portal makes it easier to identify shared infrastructure issues when multiple agents degrade at the same time. A refreshed interface across key reporting and admin pages rounds out the release with a cleaner, more consistent portal experience.

What's New

• Fail-open settings are now configurable at the bridge and tenant levels. Partners can set probe intervals, failure thresholds, success thresholds, probe timeout, and a hold-down timer that prevents fail-back until full health is confirmed.
• A custom HTTP health check endpoint can also be configured for sites with non-standard connectivity requirements, giving partners additional flexibility in how health is verified.
• The admin portal now shows which hardware node each agent gateway and aggregator is running on. Shared hardware issues are easier to spot when multiple agents show degraded or retrying states at the same time.
• Reporting and admin pages now use the modern ControlOne theme and table component. The Events, Sessions, and Bridge Inventory pages, along with additional admin and reporting pages, have been updated to match the current portal design.

Why You'll Love It

Configurable fail-open settings make it easier to tune ControlOne's resiliency behavior to match the uptime requirements of each site rather than relying on fixed system defaults. The hold-down timer helps prevent connections from oscillating during marginal connectivity, so clients stay on a stable path rather than repeatedly switching states. Hardware node visibility removes a manual correlation step during outages, helping partners and support teams get to the root cause faster. The refreshed portal pages reduce visual friction during routine work, making it easier to move through reports and admin tasks without the context shifts caused by mixed UI generations.

How to Access It

These features are live now and are automatically enabled. No configuration is required to see hardware node identifiers in the admin portal or to access the updated portal pages. Fail-open configuration settings are available at the bridge and tenant levels in the ControlOne admin portal.