ControlOne now gives partners direct influence over fail-open behavior, helping MSPs tune resiliency settings to match each site's connectivity and uptime needs. Hardware node visibility in the admin portal makes it easier to identify shared infrastructure issues when multiple agents degrade at the same time. A refreshed interface across key reporting and admin pages rounds out the release with a cleaner, more consistent portal experience.

What's New

• Fail-open settings are now configurable at the bridge and tenant levels. Partners can set probe intervals, failure thresholds, success thresholds, probe timeout, and a hold-down timer that prevents fail-back until full health is confirmed.
• A custom HTTP health check endpoint can also be configured for sites with non-standard connectivity requirements, giving partners additional flexibility in how health is verified.
• The admin portal now shows which hardware node each agent gateway and aggregator is running on. Shared hardware issues are easier to spot when multiple agents show degraded or retrying states at the same time.
• Reporting and admin pages now use the modern ControlOne theme and table component. The Events, Sessions, and Bridge Inventory pages, along with additional admin and reporting pages, have been updated to match the current portal design.

Why You'll Love It

Configurable fail-open settings make it easier to tune ControlOne's resiliency behavior to match the uptime requirements of each site rather than relying on fixed system defaults. The hold-down timer helps prevent connections from oscillating during marginal connectivity, so clients stay on a stable path rather than repeatedly switching states. Hardware node visibility removes a manual correlation step during outages, helping partners and support teams get to the root cause faster. The refreshed portal pages reduce visual friction during routine work, making it easier to move through reports and admin tasks without the context shifts caused by mixed UI generations.

How to Access It

These features are live now and are automatically enabled. No configuration is required to see hardware node identifiers in the admin portal or to access the updated portal pages. Fail-open configuration settings are available at the bridge and tenant levels in the ControlOne admin portal.

Partners can now manage remediation activity and risk decisions across Telivy and Tentacle with less duplicate work. Executive Reports also now make client-facing security reviews easier with a first-page severity breakdown.

What's New

• Tasks and POA&M tracking now work across Telivy and Tentacle. Partners can manage remediation activity, compliance work, and risk decisions in one place without duplicating entries or switching between systems.
• Executive Reports now include a first-page severity breakdown. High-severity, Medium-severity, and Low-severity issue counts appear on the first page, making it faster to walk clients through security posture without digging through the full report.

Why You'll Love It

Bringing Tasks and POA&M tracking across Telivy and Tentacle helps partners manage compliance activity with a clearer view of each client's status across products. The updated Executive Report layout also makes it easier to present security posture to clients and auditors without manually pulling details from multiple places.

How to Access It

Both updates are live now in Telivy and require no configuration.

Desktop calling and messaging workflows are more reliable with fixes that restore key controls, preserve user preferences, and clean up common display issues. A guided PSA platform integration setup is now live for Early Access partners, making configuration easier to complete and update directly from the Desktop app.

What's New

• The dial pad now returns correctly after calls end in Desktop 26.13.1. A timing issue had left the dial pad hidden after certain call flows, forcing agents to reload the app before placing another call.
• Fixed a bug that prevented agents from declining queued calls in Desktop 26.13.1, causing calls to keep ringing indefinitely.
• Ringtone selections now persist across sessions instead of resetting after logout, so users do not need to reselect their ringtone each time they log back in.
• The "From" dropdown now clearly identifies internal-only sender IDs, helping prevent delivery failures when messaging external contacts.
• Long contact names no longer overflow their container bounds in Business Messaging and Contacts views, restoring a cleaner and more readable layout.
• Corrected a sorting problem in the "My Teams" tab, so teams now appear in the expected order.
• Corrected an SFTP call recording offload setup problem that caused the connection test to fail even when credentials were valid, preventing setup from completing.
• Voicemail transcriptions on iOS now align with the correct recordings in iOS 26.3.3.
• Guided PSA platform integration setup is now live for Early Access partners. Partners can configure the integration from the Desktop app with a step-by-step setup pane, inline validation, and a confirmation state after saving.
• The "Update Configuration" option in Settings now lets partners revise an existing PSA integration setup without starting over.
• Fixed a bug in Android 26.4.1 that caused a gray screen to appear after calls end. File sharing for cloud-native Google Drive files also now includes proper handling and a progress indicator.

How to Access It

Desktop 26.13.1 is live now and users will receive it automatically with no action required. The iOS voicemail transcription fix is included in iOS 26.3.3, rolling out April 3, 2026. Android fixes are included in Android 26.4.1, also rolling out April 3, 2026. Guided PSA platform integration setup is available to Early Access partners in the Desktop app.

Early access features are available right in the product to opt-in. Use these instructions to get started: Managing Early Access Features

HIPAA Compliance Reports give partners an auditor-ready artifact built from scan data, making it easier to share compliance evidence with healthcare clients. Microsoft 365 policy enforcement helps partners detect and remediate critical security gaps across managed tenants from a single interface, while richer scan-complete emails provide faster context for triaging findings before logging in.

What's New

• HIPAA Compliance Reports map completed scan results to HIPAA Security Rule safeguards and show whether each safeguard is documented and implemented, making it easier to share evidence with auditors and clients.
• A new industry selector during assessment creation lets partners tag clients across more than 20 verticals, including healthcare, finance, and government, so Telivy can identify relevant compliance frameworks and tailor report content automatically.
• Microsoft 365 policy enforcement detects and remediates security gaps across managed tenants from a single interface (Early Access), including multi-factor authentication (MFA) enforcement, legacy authentication blocking, admin consent workflows, and guest access controls.
• Microsoft 365 security policy baselines can be applied directly to client tenants from Telivy (Early Access), so partners can move from detection to enforcement rather than opening the Microsoft admin center or configuring each tenant individually.
• Bulk PSA task sync creates and syncs all remediation tasks in a single action (Early Access), replacing manual ticket-by-ticket creation and keeping task status centralized across client assessments.
• Scan-complete emails now include finding counts, severity breakdowns, and an AI-generated summary, giving partners more context from the inbox before they log in.
• Teammates who open a Telivy risk assessment link are now provisioned automatically in Tentacle with the correct project access, removing manual setup and helping teams start collaborating faster.
• Inactive sessions now expire after 20 minutes, with a one-minute prompt to extend, improving account security across active sessions.

Why You'll Love It

HIPAA Compliance Reports make it easier to share scan-based compliance evidence without manually assembling documentation. Microsoft 365 policy enforcement turns a tenant-by-tenant manual process into a more centralized workflow, helping partners save time across managed environments. Richer scan-complete emails provide useful context right away, and automatic Tentacle provisioning helps teammates start collaborating without manual setup.

How to Access It

Open any completed scan in Telivy and use the Reports section to generate a HIPAA Compliance Report. The industry selector, richer scan-complete emails, automatic Tentacle provisioning, and session timeout enforcement are live now. Microsoft 365 policy enforcement, Microsoft 365 baseline application, and bulk PSA task sync are available through Early Access.

Early access features are available right in the product to opt-in. Use these instructions to get started: Enable Early Access Features

Autotask v2 gives partners a more streamlined way to manage inbound calls with caller context, ticket visibility, and guided setup built directly into Desktop. Reliability improvements across Desktop remove several everyday friction points, and the redesigned Android Messages experience brings a cleaner, more consistent interface for mobile messaging.

What's New

• Autotask v2 is live in the Desktop Marketplace for Early Access partners. The rebuilt integration delivers faster load times, dedicated navigation for Accounts, Contacts, and Tickets, and impersonation-only access control. Incoming call pop-ups automatically surface caller details and active tickets in Desktop, and a built-in help center provides interactive walkthroughs directly in the integration panel so partners can get started and learn features in context without leaving Desktop.
• The Desktop "from" dropdown now clearly identifies lines that support internal messaging only, helping prevent failed sends to external contacts.
• The Android Messages screen has been redesigned for Early Access partners with a cleaner thread list, a modernized chat view, and improved media handling for text, images, GIFs, audio, and files.
• DTMF tones now transmit reliably on D2 devices during calls that use specific codecs, so keypad presses are received correctly during two-factor authentication, door intercom, and elevator phone interactions.
• Custom ringtone selections now persist across logout and login sessions instead of resetting to the operating system default.
• The dial pad now reappears reliably after calls end, resolving a race condition that could leave the dialer hidden after certain call flows.
• Queue calls can now be declined properly in Desktop, so calls do not continue ringing indefinitely when agents need to manage availability.
• The My Teams tab now displays members in the correct sort order for a more consistent view.
• Long contact names now stay within their display area in messaging and contacts views, keeping the interface clean and readable.
• Newly added Shared Inbox users can now see the full conversation history instead of only messages sent after they were added.

Why You'll Love It

Autotask v2 makes it easier to respond to inbound calls with the right context rather than switching between applications to find caller details and open tickets. Desktop fixes also remove several small but persistent issues that could interrupt daily work, while the refreshed Android Messages experience brings a cleaner, more polished mobile workflow.

How to Access It

Autotask v2 and the redesigned Android Messages experience are available to Early Access partners. Both Autotask v1 and v2 run side by side with separate settings and data, so existing workflows are not disrupted. Install Autotask v2 from the Desktop Marketplace, and use the in-product Early Access controls to enable eligible features through the Managing Early Access Features instructions.

Early access features are available right in the product to opt-in. Use these instructions to get started: Managing Early Access Features

Desktop reliability improvements, DTMF fixes, and Shared Inbox updates are live now and apply automatically.

UCaaS now delivers a faster Desktop experience, more reliable fax user provisioning, and consistent call routing behavior in the Partner Portal. These updates reduce the need to engage with technical support and enhance day-to-day platform performance.

What's New

• The Desktop application has been migrated to a modern framework, improving speed and stability while enabling future improvements.
• Fax user provisioning now handles errors gracefully. Previously, a partial failure during user creation could leave a fax account stranded with no way to retry. The fix ensures proper cleanup so partners can re-submit without hitting a dead end.
• Call routing changes in the PBX now persist correctly. Switching between simultaneous and sequential ring strategies no longer reverts to the default. Routing preferences save as expected across all strategy and timing combinations.

How to Access It

These updates are live now and are automatically applied. No action is required.

HIPAA Compliance Reports give partners an auditor-ready artifact built from scan data, making it easier to share compliance evidence with healthcare clients. Navigation and provisioning across the Unity Platform, Telivy, and Tentacle are also more seamless, with automatic workspace routing and emails notifying partners of completed scans that help them review findings faster.

What's New

• Generate HIPAA Compliance Reports from completed scans. Reports map scan results to HIPAA Security Rule safeguards and show whether each safeguard is documented and implemented.
• Move from a customer tenant in the Unity Platform into the correct Tentacle workspace automatically, without manual navigation.
• Improve provisioning between the Unity Platform, Telivy, and Tentacle by linking Telivy clients to the correct Unity Platform tenants and providing guidance when Tentacle access still needs to be set up.
• Emails notifying partners of completed scans now include finding counts, severity breakdowns, and an AI-generated summary to help partners review results faster.

Why You'll Love It

HIPAA Compliance Reports make it easier to share scan-based compliance evidence with healthcare clients and auditors without manually assembling documentation. Smoother navigation and provisioning across the Unity Platform, Telivy, and Tentacle reduce workspace confusion and make onboarding easier. Emails notifying partners of completed scans now provide useful context right away, helping partners understand results faster without logging in first.

How to Access It

Open a completed scan in Telivy to generate a HIPAA Compliance Report from the Reports section. Workspace routing, provisioning improvements, and updated completed-scan email notifications are live now and automatically enabled.

Configurable fail-open triggers give partners more control over how bridges respond to service disruptions, with customizable health checks and recovery settings that can be tailored to each client environment.

What's New

• Configure fail-open behavior with customizable probe intervals, failure thresholds, recovery thresholds, probe timeouts, and hold-down timers.
• Define custom HTTP health-check endpoints to check service availability using a specific web address. Probes follow redirects automatically and count the destination as healthy only when it returns a successful 2xx response, such as 200 OK.
• Apply fail-open settings at the bridge level for granular control or at the tenant level for more consistent behavior across environments.

Why You'll Love It

• Adjust fail-open behavior to match each client environment rather than relying on fixed defaults.
• Reduce unnecessary switching between fail-open and normal operation with more controlled recovery behavior.
• Get more precise visibility into service availability with targeted health checks.

How to Access It

• Fail-open settings. Open the ControlOne Portal and select a bridge or tenant to configure fail-open settings, including probe intervals, thresholds, and custom endpoints. This feature is currently available in Early Access. Contact your Cytracom representative to request access.

ControlOne now helps you stay ahead of issues with proactive alerts for offline connectors and sites, self-service executive reports you can generate on demand, and more flexible static routing for complex network environments.

What's New

• Global Alerts for connectors and sites are now available. Receive automatic email notifications when a connector or site stays offline beyond your configured threshold, and another notification when it comes back online.
• Global Alerts batches multiple connector state changes into a single email to reduce noise.
• A centralized Global Alerts Settings page lets you configure recipients, thresholds, and notification behavior in one place.
• Executive Reports are now self-service. You can generate, download, and share professional PDF reports for network security posture and endpoint inventory directly from a dedicated page in the ControlOne portal.
• Static routing now supports /32 host routes and overlapping destination networks. Existing routes remain unchanged.
• Executive Reports includes usability improvements such as clearer descriptive text, knowledge base links, bold table headers, and a date picker limited to the last two years.
• Global Alerts includes clearer labels, contextual descriptions for each alert type, and a "Learn more" link to the knowledge base.
• A new "Learn more" link next to the Early Access opt-in section makes it easier to explore upcoming features and understand how to participate.

Why You'll Love It

Global Alerts helps you respond faster by notifying you when connectivity issues occur, rather than relying on someone to notice a dashboard change. Executive Reports makes it easier to generate polished documentation for customer reviews, compliance conversations, and internal reporting without waiting on another team. More flexible routing support also removes previous limitations for overlapping subnets and complex multi-site environments, so you can manage traffic paths with greater precision.

How to Access It

Most features are available now and are automatically enabled.

• Executive Reports. Open the Executive Reports page in the ControlOne portal to generate and download reports.
• Global Alerts. Open the Global Alerts Settings page to add recipients, enable Site Alerts and Connector Alerts, and set offline thresholds.
• Static routing enhancements. Available now in static route configuration. Existing routes are preserved.
• Early Access features. Use the "Learn more" link in the portal's Early Access section for details on participation.

1:1 outbound NAT for IPSec connectors expands deployment flexibility for more complex network environments. Global Status accuracy improvements make outage conditions easier to trust at a glance, and Global Alert Settings provide a centralized way to manage alerting behavior across environments. Admins also gain per-agent release channel overrides, plus bug fixes that improve responsiveness and reporting clarity.

What’s New

• IPSec connectors now support 1:1 outbound NAT, enabling more predictable source mapping for customer environments that require outbound address translation.
• Global Alert Settings add a centralized way to configure alerting behavior across your environment, improving consistency for operational notifications.
• Per-agent release channel overrides allow admins to assign a specific release channel to an individual agent when targeted testing or staged rollouts are needed.
• Global Status data quality improvements better align Global Status page results with real-time outage conditions, improving confidence in what the page reports.
• Bridge assignment views now respond more reliably, improving usability when reviewing or updating assignments.
• Device posture check failure summaries now display clearer failure reasons in reporting, improving troubleshooting and audit readiness.

Why You’ll Love It

Expanded NAT options reduce networking workarounds when deploying IPSec in environments that need strict outbound mapping. Centralized alert settings and improved Global Status accuracy make it easier to monitor service health and respond quickly when issues occur. Release channel overrides support more controlled rollouts, and the UI and reporting fixes reduce time spent waiting on pages to load or digging for the real reason a device failed posture requirements.

How to Access It

• 1:1 outbound NAT for IPSec connectors, Global Alert Settings, Global Status improvements, and per-agent release channel overrides are available now.
• The bridge assignment responsiveness and reporting failure summary fixes are included in this release.