Version 2022.2
Ivanti Neurons for Discovery

Connect to Ivanti Neurons for Discovery & Service Mapping to increase overall visibility of your data center environments and corporate network by importing all discovered hardware into Ivanti Neurons.

New scan Status column for each network range. Hover over the progress bar to display further status information, such as the scan types, number of target IPs in the network and scan duration. The scan Status can be found in Admin > Discovery > Discovery Scans.
Learn more about Scan Status.
Ivanti Neurons for Edge Intelligence

Additional column filters have been added to query table views. This adds the necessary flexibility of filtering on results of interest. The filters are taken into account when exporting data from the table view.
Ivanti Neurons for Healing

It is now possible to copy and paste workflow content between workflow instances (including between Healing and Workspace) as well as between tenants.
Use this capability from within the workflow editor:
- Use CTRL+A (or CTRL+multi-select) to choose the stages to copy.
- Use CTRL+C to copy to clipboard.
- Use CTRL+V to paste the copy in the destination workflow.
These key combinations are also the same on Apple Mac devices.
All stages copied must be installed on the destination server. If the source tenant contains reusable library nodes, the content from these will need to be recreated on the target tenant before the workflow can be saved.

The Service State stage can now be used to take action to heal. If a service is not present on a device, the stage will return a result with category 'not_found', which can be filtered upon to take further action.

The App State stage can now be used to report on missing software. If the specified software title is not found, the stage will return a result with category 'not_found', which can be filtered upon to take further action, such as installing software.
Ivanti Neurons for Patch Intelligence

Introduction of Patch Groups. Patch Groups allow you to organize patch information within the Ivanti Neurons Platform in a way that is relevant to your environment. For example, a Patch Group can be created to include only patches that have been approved for a patch deployment or patches that were released on Patch Tuesday with a severity of Security Critical.
Patch Groups can be created, viewed and managed in Patch Management > Patch Intelligence, and then associated with a Patch Configuration and deployed in Patch Management > Patch Settings.
Learn more about Patch Groups.

Sometimes a patch cannot be downloaded directly from the vendor by Ivanti Neurons for Patch Management. This can happen for a number of different reasons. For example, the patch might be an ISO that represents a missing Windows 10 product level, it might be an old patch that has been removed by the vendor, a login to the vendor website might be required to access the patch, or, the patch might have been only available via a temporary patch link, etc.
If a patch cannot be automatically downloaded from the vendor by Ivanti Neurons for Patch Management, the phrase ‘Sideload Required’ will be displayed in the Download Status column of the Patch Summary in Patch Intelligence.
The Sideload action in the Patch Detail panel, adds the patch file to the Pending Sideloads section in the Manage Sideloads tab on the Patch Intelligence dashboard. Pending sideloads are ready for file selection to upload to Ivanti Neurons. The file goes through a series of verification scans before it can before approved. Once approved, it can then deployed in the usual manner.
Learn more about how to Patch Sideloads.
Ivanti Neurons for Patch Management

In the Patch Configuration detail view, a new Show summary button is now available above the details panel. Click the button to display a summary of your custom patch configuration options.

The Deployment Behavior area enables you to configure what patches will be deployed. Two new options are now available:
- Filter by Vendor/Product: Allow patches for the vendors, product families and product versions that you specify to be deployed to endpoints.
- Deploy by Patch Group: Specify one or more patch groups that contain the patches that you want to deploy. This is a good way to make sure that only approved patches are deployed.
Learn more about these options in the Patch Settings topic.

In the Endpoint Vulnerability Device Summary and on the Patches tab of Device Details, a known exploit indicator icon is now displayed for devices with at least one missing patch tied to a CVE that has been exploited.
Learn more about Endpoint Vulnerability.

In the Endpoint Vulnerability view, select a device in the device summary table to enable the Actions menu. The new Actions menu includes two options:
-
Deploy missing patches: When the selected device has missing patches, the Deploy missing patches option allows you to deploy the missing patches to the device. The missing patches will be deployed to the device and, if required, the device will reboot immediately following the successful deployment of the patches. If the user is logged on, the reboot action will be forced after one day. A countdown time-out of one hour will be displayed to the user and an OS shutdown message will display to the user for 60 seconds. The user will have the option to extend the time-out for up to 10 minutes.
-
Scan now: Initiates a patch scan for all missing patches on the selected device.

Two new action buttons are now available on the Patches tab of Device Details:
-
Scan now: Initiates a patch scan of the selected Cloud-managed device.
-
Deploy patches: Initiates an immediate deployment of the selected missing patches. The missing patches will be deployed to the device and, if required, the device will reboot immediately following the successful deployment of the patches. If the user is logged on, the reboot action will be forced after one day. A countdown time-out of one hour will be displayed to the user and an OS shutdown message will display to the user for 60 seconds. The user will have the option to extend the time-out for up to 10 minutes.
Ivanti Neurons Patch for MEM

Ivanti Neurons Patch for MEM extends existing Microsoft Intune implementations to include third-party application updates. Its threat and patch intelligence help organizations properly prioritize remediation of third-party software vulnerabilities.
Ivanti Neurons Patch for MEM helps you drive an adaptive security strategy purely in the cloud with actionable intelligence for risk-based prioritization. Ivanti Neurons Patch for MEM provides comprehensive third party patch publication capabilities.
Key features:
- Extend Microsoft Intune with third-party patch management.
- Proactively patch against active exploits.
- Avoid failed patch deployments with patch reliability insight.
- Streamline patch management processes.
By leveraging Ivanti Neurons Patch for MEM, organizations can better protect themselves from data breaches, ransomware and other threats that stem from vulnerabilities in third-party applications.
Learn more about Patch for Intune.
Ivanti Neurons for Spend Intelligence

Customers can now navigate much faster and find required license or spend information either by using a new expanded menu on the left or by typing contract number, product name or vendor name in the Search field.
Learn more about Spend Intelligence.

On the Software Insights page some charts may take longer to load because real-time calculations involving large amounts of data are happening. Customers can now enable a Pre-Calculate option that improves the page viewing experience. This new setting is under Software > Admin > Software > Software Insights.
Learn more about Configuration and administration.

We are breaking away from dependency on OKTA. Organizations that do not have OKTA or any other single sign-on solution in place can now use Adobe SaaS and Salesforce SaaS standalone connectors.
Learn more about SaaS Management.
Ivanti Neurons Workspace

With the expansion of remote work and an ever more complex technology set, it is more important than ever to manage digital employee experience. As part of Digital Employee Experience Management, we have introduced the Digital Experience Score (DEX Score) to quantify and measure digital experiences for devices. Making use of a curated set of indicators, hybrid machine learning, and statistical models as the scoring engine, a Digital Experience Score between 0-100 is calculated for each device.
Key features:
- Score is calculated using Service Management, Device, Security, and Application Indicators that provide a comprehensive view of digital experience.
- New DEX Score column added to Devices page.
- New Digital Experience Score page under Device Details page where potential issues and recommended remediations can be seen.
- Further drill down to see all Indicators used to calculate DEX Score for that device.
Learn more about the DEX Score.