Axiad Mesh Release Notes

April 2, 2026

This release delivers four key improvements across the Mesh platform: an AI‑powered agent for natural language asset investigation, detailed risk explanation surfaces for better asset triage, expanded asset attribute visibility, and a critical fix to identity reconciliation and merging logic.

Features

• PM‑17490 — Mesh AI Agent: An AI agent is now available within the Mesh Dashboard, allowing users to interact with Mesh data using natural language queries. Key capabilities include a floating action button accessible throughout the dashboard, free‑form and guided prompt support (e.g., "Show me expiring certificates"), automated privacy filtering and tokenization of sensitive fields, per‑response user feedback, and basic audit logging of AI interactions.

• PM‑17136 — Detailed Explanations for Asset Risk Scores and Tags: Users can now access detailed explanations for why a risk tag was assigned to an asset, enabling faster triage and more informed remediation. Simple risks display a clear condition statement, policy‑based risks show the assessment outcome along with non‑compliant attributes and triggering policy name, and each risk tag is independently clickable with its own explanation modal. Explanations are accessible from the asset detail view via the Risks section, and risk tags in the asset list view display tooltip summaries on hover.

• PM‑17337 — Surface Key Asset Attributes for Display: The Mesh UI and API now support displaying additional key asset attributes across the asset list and asset detail views. New attributes include OS Version (Machine assets), Product Attribute (Software/Product assets), Mesh Unique Asset ID (all asset types), and External ID (all asset types). If an attribute is not populated for a specific asset, a dash (-) is displayed.

Enhancements

(No additional enhancements were included in this release.)

Bug Fixes

• PM‑17590 — Fix Reconcile SQL Query for User Correlations and Identity Merging: Fixed a bug where user correlation records with a null secondary user ID were not being resolved during reconciliation, even when the corresponding user existed in the risk database. The reconcile SQL query now correctly identifies and updates affected rows, and identity merging proceeds for users whose correlation records were previously skipped.

Known Limitations

• OS Version and Product Attribute data displays a dash (-) for all machine and software assets pending connector sync completion.

• Risk explanations are currently available for Software assets only. Machine and Certificate asset detail views do not yet surface a Risks section.

• Risk score click displays a severity label (e.g., "Low Risk") but does not yet provide a full score breakdown.

• Transitive and indirect identity correlations do not auto‑resolve at this time and efforts are underway to address this limitation.

March 27, 2026

This release delivers improvements focused on risk reporting clarity, asset discovery efficiency, and system stability. Additionally, a new advanced filtering experience has been introduced for NHI assets, and an internal stability fix improves reconcile job scheduling behavior for long‑running tenants.

Features

• PM‑17786 — All risk reporting in Mesh has been updated to ensure reports are credible, auditable, and easily understood by risk-literate stakeholders.

  Key highlights:

  • Replaced Annual Rate of Occurrence (ARO) with Loss Event Frequency (LEF)

  • Updated FAIR components, GraphQL types, backend services, database schema, and UI labels

  • No breaking changes for existing customer integrations

• PM‑17227 — A new single advanced filter box is now available on NHI asset tables, enabling faster and more precise asset discovery.

  Key capabilities:

  • Unified advanced filter box with column‑specific controls (text, dropdown, range)

  • Supported across NHI asset types (Software, Crypto, Machine)

  • Real‑time table updates as filters are applied

  • One‑click reset to clear all filters

  • Filter state remains visible and persists until explicitly reset

  • Clear empty‑state messaging with reset option when no results are returned

  Edge‑case handling:

  • Graceful handling of malformed or mixed data (invalid values ignored, unknowns grouped)

  • Maintains UI performance with multiple active filters

  • Filter state preserved during data refreshes unless reset by the user

Enhancements

(No additional enhancements were included in this release.)

Bug Fixes

(No bug fixes included in this release.)

Known Limitations

March 20, 2026

This release introduces a new feature. The feature adds a unified Status column across NHI asset inventories to improve asset visibility and triage. The bug fix resolves an error blocking customers on corporate networks from accessing the Mesh Status page.

Features

• PM‑17676 — Asset Status Column in NHI Asset Inventory: A new Status column has been added across all NHI asset types (software, crypto, hardware) to allow users to quickly view, sort, and filter by operational state. Sorting is alphabetical, with “Unknown” always sorted last to help with triage. Missing fields now default to Unknown. Sorting and filtering operate independently for each asset type.

       Status value mapping per asset type:

Enhancements

(No additional enhancements were included in this release.)

Bug Fixes

• PM‑17373 — Users on the corporate network previously encountered an HTTP 431 error due to oversized request headers caused by accumulated cookies across Axiad subdomains. This has now been resolved so customers can successfully access the Mesh Status page without errors.

Known Limitations

March 13, 2026

This release delivers two critical fixes, improving the reliability of audit log exports and the visibility into audit job outcomes. Administrators can now generate large audit log CSV files without hangs and review complete success/failure audit trails for asset export operations.

Features

(No new features introduced in this release)

Enhancements

Export Job Audit Logging Asset export operations now generate structured audit log entries with a consistent Transaction ID, capturing both initiation and terminal status (success or failure). Each entry includes the actor (user email) and client IP for API-triggered exports.

• New resource type: export_job

• Resource name: asset_export

• Events captured: initiate, success, failure

Bug Fixes

• PM‑17772 — The CSV export on the Audit Logs page previously stalled and never completed downloading, blocking administrators from exporting logs for compliance and reporting. This fix restores reliable, streaming‑based export behavior and ensures export jobs complete across all dataset sizes.

• PM‑17423 — Export job failures were inconsistently or incorrectly recorded in the audit logs, preventing accurate traceability. This fix ensures all export operations (initiate, success, failure) are logged with the correct resource type, transaction ID, and actor attribution.

Known Limitations

March 9, 2026

This release introduces major improvements to the authentication experience across the Axiad Mesh Platform. The primary enhancement is Silent Authentication (Seamless SSO), allowing users with active Identity Provider (IdP) sessions to access Mesh without re-entering their username on subsequent access.

Silent Authentication (Seamless SSO)

Users with an active IdP session who have previously accessed the Axiad Mesh dashboard are now automatically signed in without needing to re-enter their username.

Key capabilities include:

• Automatic silent login when a valid IdP session exists and user previously accessed the Axiad Mesh dashboard

• Support for both OIDC (prompt=none) and SAML (IsPassive=true) silent flows

• Browser‑based detection of third‑party cookie restrictions

• Seamless fallback to interactive login with no user‑visible error

• Multi‑IdP support, including Azure AD (Entra ID) and Okta

Bug Fixes

(No bug fixes included in this release.)

Known Limitations

• Username entry is required on the first visit to the Axiad Mesh dashboard. Automatic sign-in with an active IdP session applies to subsequent visits only.

• Concurrent session control is not introduced in this release.

• IP‑binding for session replay mitigation is not implemented by design to maintain compatibility with mobile/VPN environments.

• Silent Authentication is currently validated with Azure AD (Entra ID) and Okta only. Other IdPs have not been tested in this release.

February 27, 2026

This release focuses on improving dashboard usability, data clarity, and operational reliability. Key updates include multi-select filter capabilities across all dashboard views, and important fixes to user correlation and session management workflows. These improvements are designed to reduce operational friction and enhance visibility into your identity risk posture.

Features

Multi-Select Filters with Active Filter Controls

Dashboards now support selecting multiple filter values simultaneously, giving users greater flexibility when analyzing Human Identity (HI) and Non-Human Identity (NHI) data.

• Select multiple filters at once from any filter dialog

• A "Clear All Filters" control is available at the dashboard level for quick resets

• Active filters are displayed prominently with individual remove buttons, so you always know what filters are applied

• Filters can be removed directly from the asset list drawer without navigating away from your current view

• The dashboard updates in real time as filters are added or removed

• The filter panel adapts responsively when many filters are active

Enhancements

• PM-17371 — The new Public Key Algorithm field replaces the previous "Key Size" field in asset lists and detail pages, combining the algorithm type and key length into a single, readable value.

Bug Fixes

• PM-17427 — Accepting or rejecting weak user correlations through the Profiling Gaps workflow previously failed with an error. This has been resolved. Both accept and reject flows now complete successfully, success notifications display as expected, and profiling gap counts update in real time.

• PM-17353 — Users are now properly redirected to the login page after a session timeout or logout. Looping session‑expiry popups are fully resolved.

Known Limitations

February 20, 2026

This release focuses on user experience improvements within the Mesh dashboard, specifically around navigation and data exploration. The release includes quick access to the Mesh system status page and all-column sorting for asset/identity tables to streamline user workflows and improve operational efficiency.

Features

(No new features introduced in this release)

Enhancements

• PM-17372 —  Axiad Mesh Status Link in User Dropdown Menu An "Axiad Mesh Status" link has been added to the user name/avatar dropdown menu, directing all users to https://status.mesh.axiad.io/ in a new browser tab to preserve their current session. The link is positioned alongside other external resource links (e.g., Axiad Knowledge Center), is accessible via keyboard navigation, available to all roles and tenants by default.

• PM-17138 — All columns in the asset/identity table now support ascending and descending sort order via column header clicks, with real-time table updates, persistent sorting state across refreshes, graceful handling of mixed or malformed data (unknowns grouped at end, invalid entries ignored), an empty state message with reset option when no results are returned, and full compliance with established dashboard UI patterns and accessibility standards.

Bug Fixes

(No bug fixes included in this release.)

Known Limitations

February 13, 2026

This release delivers meaningful improvements across the Axiad Mesh Platform, with a focus on smoother day‑to‑day workflows, stronger system reliability, and enhanced clarity in the dashboard and asset management experiences. Driven by direct customer feedback, these enhancements help organizations ensure a more intuitive, consistent user interface.

Features

(No new features introduced in this release)

Enhancements

• PM-17319 —  Automatically redirects tenants to their preferred dashboard (NHI or HI) using backend metadata, eliminating repeated manual selection.

• PM-17328 — Frontend now shows both Serial Number and Issuer DN for all crypto assets, enabling unique identification of certificates.

• PM-17329 — Backend correlatedAssets query updated to supply serialNumber and issuerDN fields to support precise crypto‑asset identification.

• PM-17344 — Risk tags now show only the risk type (e.g., “PQC noncompliant”), without an appended asset type, improving clarity and reducing redundancy.

Bug Fixes

• PM-17004 — Fixed issue where the platform failed to remember dashboard preference (NHI/HI) between sessions.

• PM-17195 — Filter selection now returns all matching assets (both risky and non-risky) with consistent counts across widgets, filter dialog, and bubble chart.

• PM-17473 — Resolved channel closure race condition in export worker pool, causing production panics and service instability.

Known Limitations

February 6, 2026

This release delivers improvements to cryptographic asset management, search reliability, accessibility compliance, and overall platform stability. Enhancements include improved certificate identification, optimized software correlation, improved export accuracy, corrected search behavior, and UI refinements. These updates ensure more reliable asset workflows and an improved end‑user experience.

Features

• PM-17002 – Added Serial Number and Issuer DN to crypto asset details for unambiguous certificate identification.

• PM-17327 – Updated certificate views to display only active certificates, adding a filter to improve clarity, reduce clutter, and ensure users see only valid certificate records.

Bug Fixes

• PM-17105 – Fixed an issue where the software asset export incorrectly showed “0” in the Installed Machines column, ensuring exported counts now accurately match the values displayed in the UI.

• PM‑17135 – Fixed an issue where software assets did not appear in search results, ensuring all existing software assets are now fully searchable and discoverable.

• PM-17326 – Corrected misleading UI text to ensure labels and descriptions now accurately match functionality, reducing user confusion and improving clarity.

Known Limitations

February 2, 2026

This release enhances the scalability and reliability of the Axiad Mesh platform by significantly improving the risk‑service architecture and modernizing CRM integrations. Two key updates enable independent scaling of high‑volume data processing components. Together, these updates strengthen system performance, operational efficiency, and long‑term maintainability.

Features

Enhancements

• PM‑17079 – Refactored the risk service to support multiple execution modes—full, headless, and serve—using a single container image. This enables independent scaling of ingestion and API servers, improving performance and resource efficiency for high‑volume environments.

Bug Fixes

(No bug fixes included in this release.)

Known Limitations

January 30, 2026

This release delivers enhancements to the Axiad Mesh platform, focusing on expanding configurable reporting capabilities, strengthening Non‑Human Identity (NHI) management, and advancing analytics integration. Key improvements include support for custom report formats, seamless CSV export for NHI data, and enhanced ServiceNow asset name mapping.

Features

• PM‑17137 – Enables Front-end to download reports directly in CSV format without ZIP compression, improving compatibility with restricted environments and increasing flexibility in report generation.

• PM‑17208 – Adds frontend support for CSV export of NHI data using a backend‑generated download URL, with direct redirection to Azure storage for faster and more scalable downloads, without requiring UI changes.

Enhancements

• PM‑17162 – Integrates analytics into the Mesh Dashboard, enabling advanced product analytics, user behavior tracking (with explicit user consent), session replay support, and improved insight into feature usage for data‑driven decisions.

• PM‑17045 – Improves asset identification for machine assets imported from ServiceNow by mapping the “Name” attribute when available or falling back to sys_id when not, ensuring consistent and reliable asset labels.

Bug Fixes

• PM‑17160 – Fixes an issue where cryptographic key sizes were not displayed in correlated asset views, restoring complete and accurate visibility of cryptographic attributes.

Known Limitations

January 23, 2026

This release enhances the Axiad Mesh platform with improved asset ownership visibility, expanded cryptographic asset details for Post-Quantum Cryptography (PQC) readiness analysis, and a streamlined user experience across dashboards and asset views.

Features

Enhancements

• PM‑17059 – Added consistent “Owning Group” presentation across all asset types in both detail and list views, improving ownership clarity.

• PM‑17093 – Machine assets now correctly identify individual ownership when group ownership is not available, preventing incorrect orphan classification.

• PM‑17097 – Backend now returns “Owning Group” information for all applicable asset types to support front‑end display.

• PM‑17058 – Crypto assets now display key size and full signature algorithm across details and list views, aiding PQC analysis.

• PM‑17045 – Machine assets now use “Name” when available or fall back to ServiceNow sys_id to ensure every asset is identifiable.

• PM‑17046 – Prevents blank asset labels by showing the external ID as the display name when no name is provided.

• PM‑16996 – Widget now applies all active filters correctly, ensuring accurate and consistent data representation.

• PM‑17003 – Users can now sort and filter crypto assets by Owner and Installed On columns, enabling deeper analysis and visibility patterns.

Bug Fixes

• PM‑16976 – Resolved an issue where the browser prompted for ServiceNow API credentials instead of honoring SSO authentication.

Known Limitations

January 16, 2026

This release delivers key enhancements to the Axiad Mesh platform, with a strong focus on user experience, performance optimization, and data accuracy. Updates include seamless authentication flows, refined crypto‑asset risk scoring, powerful new data‑sorting capabilities, and significant gains in reconciliation-engine performance.

Features:

• Streamlined ServiceNow Integration: Single sign-on (SSO) authentication for seamless access to crypto asset details

• Faster Reconciliation Processing: Incremental change detection reduces processing time for large environments

• Improved Risk Assessment Accuracy: More precise classification of cryptographic assets

• Enhanced Data Management: New sorting capabilities for asset lists

Enhancements

• PM-16987: Introduces timestamp‑based incremental reconciliation, enabling the system to process only modified records rather than the entire dataset. This improves performance, supports early exit when no changes are detected, and includes fallback logic when full reconciliation is required.

• PM-17003: Adds the ability to sort and filter crypto‑asset lists by Owner and other key attributes, improving navigation and analytical workflows.

• PM-17005: Users can now sort software assets by “Installed Machines,” making it easier to identify software with the highest exposure across environments.

Bug Fixes

• PM-16976: Resolves an issue in which users were prompted for API credentials instead of SSO when opening ServiceNow from Mesh, ensuring a seamless authentication experience.

• PM-17000: Fixes an issue where crypto assets installed on machines were incorrectly labeled as “Orphan NoAsset,” ensuring accurate asset‑to‑machine relationship mapping.

• PM-17001: Removes ambiguous tooltip labels (e.g., “Safe,” “Very Low Risk”) from the risk score display to prevent misinterpretation and improve clarity.

Known Limitations