Zscaler App 1.1.3 for Windows and Mac OS X: Release Notes

Release Date: October 18, 2016

Zscaler App 1.1.3 includes the following improvements and fixes:

  • The Zscaler App profile for Windows now features an option to disable loopback restrictions on containerized applications. By default, applications running in the container mode in Windows are not allowed to make connections to other local running processes. This caused issues for the applications when forwarding traffic via the Zscaler App. Zscaler recommends that you enable this option in the Zscaler App Portal when EPM (Enhanced Protection Mode) is enabled in Windows. This feature is applicable to Windows 8 and above.
  • The Zscaler App Portal Identity Provider (IdP) configuration now supports an option to create device tokens that could be associated with a device when the Zscaler App is installed. The Zscaler App then uses this token to enable transparent single sign-on for authentication using SAML.
  • You can now add a gateway macro function ${ZAPP_LOCAL_PROXY} to the PAC file used for the Zscaler App in the Tunnel with Local Proxy mode. You can do this instead of manually adding the loopback IP address and ports to the PAC file. When you add the PAC file, the Zscaler App Portal will validate it to ensure it contains either this macro or the loopback socket. The Zscaler App will also automatically replace the loopback socket with the macro function in any new PAC files you add for the Tunnel with Local Proxy mode.
  • The network adapter signature certificate is now automatically installed through an exe installer when you install the Zscaler App on Windows devices. Previously, if you deployed the Zscaler App with an MSI Installer, you were required to add an installer option for this certificate. If you did not previously use this installer option, the certificate will  be installed with an underlying EXE installer the next time the Zscaler App is updated on user devices.
  • The Zscaler App profile for Windows now features an option to override cached WPAD settings in Internet Explorer or Edge browsers. This action ensures that WPAD or cached proxy settings do not interfere with the Zscaler proxy settings enforced by the Zscaler App.
  • The Zscaler App Portal has added UDID, MAC Address, and the keep alive time stamp to the device attributes it captures and makes available under Device Overview in the Zscaler App Portal. You can view these device attributes by exporting the device details for all users as a CSV file.
  • The Zscaler App login screen displays a new label for the user login screen. The default label Username has been updated to "Email id." You can change the label to show “User Id” by using the -userDomain install parameter when installing the Zscaler App.
  • Fixes an issue due to which the Zscaler App did not fail-open properly upon captive portal detection when the browser redirected to a public website.
  • Fixes an issue due to which blank spaces between DNS search domains entered in the Zscaler App forwarding profile were not parsed correctly and resulted in the criteria not being applied correctly for detecting trusted networks.
  • Fixes an issue due to which users on Windows devices saw multiple Zscaler App tray icons after the App ZSAService.exe process was terminated using the Task Manager.
  • Fixes an issue due to which users on Mac devices had to reauthenticate when they connected their devices to an external hard drive.