October 2025

Oct 31, 2025 — New triggers (CAP Device Compliance Change Event, Device Compliance Change Trigger, and Device Removal Access Based on Device Compliance Change) automate identity actions based on endpoint compliance signals with integrations like Jamf and SentinelOne.

Oct 10, 2025 — Introduces an Access Request Submitted trigger, Approval Policy & Generic Approval Policy actions, plus templates for Hardware Provisioning, Multi‑Step Serial, and Quorum approvals to tailor governance flows.

Oct 31, 2025 — New trigger detects inactive accounts after a set period and can notify or disable users automatically, tightening lifecycle and compliance hygiene.

Oct 3, 2025 — New connector aggregates account & group data from IBM RACF database exports to extend governance to mainframes and reduce orphaned access.

Oct 8, 2025 — High‑severity advisories for Central Credential Provider (v14.0 & 14.2) and Vault Self‑Hosted (< v15.0). Apply patches per bulletin guidance. (CA25‑33)

Oct 29, 2025 — Critical fixes for HTML5 Gateway Container/RPM (≤ 14.6) and PSMP for SSH (≤ 14.8.1). Immediate patching recommended. (CA25‑35)

Oct 16, 2025 — CyberArk recognized as a Leader for execution and completeness of vision in the Gartner Magic Quadrant for PAM.

Oct 7, 2025 — New discovery and contextual analysis capabilities deliver greater visibility and control of machine identities and certificates across multi‑cloud.

Oct 20, 2025 — Terraform & SDKs (Java, Python, Go, Ruby) add roleArn & roleExternalID to enable gateways to assume IAM roles when accessing AWS Secrets Manager.

Oct 23, 2025 — IAM auth for AWS ElastiCache now available across CLI, Terraform, Go SDK, and Ruby SDK for more secure access patterns.

Oct 22, 2025 — Nodes associated with Discovery Connectors are now tagged with connector IDs; editing node IDs links them automatically for cleaner discovery.

Oct 24, 2025 — Activity type icons, tooltips, Slack failure messaging, and improved empty‑states deliver clearer feedback and smoother administration.