Release Notes for VOSS Product Suite 25.4#
Release Overview#
These are the official release notes, including upgrade notes, for:
Product: VOSS Product Suite
Release Version: 25.4
Release Details#
Platform |
|---|
Release : |
Build Number : |
Platform Version : |
Release Date: May 14th, 2026 |
Supported Upgrade Paths:
24.x => 25.4 (ISO Upgrade only)
25.x => 25.4 (ISO Upgrade only)
Application Compatibility
Ensure that the hardware version of your virtual machines (VMs) are compatible. Supported install VMs:
ESXi
Nutanix
Hyper-V
Refer to the Product Compatibility Matrix for all virtual machine, app and browser compatibility support.
Ensure that your VM host CPU supports AVX (Advanced Vector Extensions).
A cluster check command in the Automate pre-upgrade steps checks for AVX support.
Introducing VOSS Product Suite 25.4#
The VOSS Product Suite 25.4 release introduces a wide range of exciting enhancements across the portfolio. These include both core capabilities that apply across all products and product-specific improvements. The following is a summary of these updates.
Core functionality (available across the portfolio): Introduces several key AI innovations designed to drive further automation and analysis across the platform. These include:
MCP Server: Simplifies and accelerates integration with external services, particularly for organizations intending to leverage AI agents to drive wider enterprise automation.
AI Anomaly Detection: Uses machine learning to identify and track variances across your estate to surface additional insights and supporting proactive alerting.
Alerting: Adds a flexible alerting capability that enables rule-based actions triggered by system data, ranging from simple notifications to workflows and automation tasks within or outside the platform.
These capabilities (and others planned for future releases) demonstrate our continued investment in modern technologies to deliver innovative use cases and unlock additional value across the product suite.
UC Automation (formerly UC-related workloads in Automate): Provides a combination of expanded and new use cases across Cisco and Microsoft workflows. User onboarding is a key initial MCP Server workload enabled in this release.
UC Monitoring (formerly Insights Monitoring): Continues portal consolidation efforts by bringing Cisco dashboards into the core portal alongside other supported vendors (Microsoft and Cisco Webex). This completes the transition from the legacy Dashboard portal, delivering a more consistent and improved user experience across the product suite.
Meeting Room Management: Introduces a new product that provides a consolidated management interface for managing meeting rooms across Cisco and Microsoft environments. It includes configuration management, monitoring, and extensive analytics to deliver insights into your meeting room estate.
License Management: Expands on capabilities introduced in previous releases, providing wider usage and cost analysis for Microsoft license estates.
NetFlow: Introduces updated dashboards that provide enhanced visibility into collected NetFlow data and metrics.
This section provides a high-level summary of the release. For a more comprehensive overview of the new capabilities and details, refer to the highlights and the full release notes. Note that in this release, product naming is being updated across the platform and documentation. Some legacy references may still appear in guides and help text as these updates continue to be rolled out.
Highlights#
Release 25.4 contains the following highlights and enhancements:
Themes Enhancements#
It is now possible to fully export and import themes from the VOSS Product Suite UI, with all their settings and images included. Themes can also be marked as default and not rely on the theme name of “default”.
The system now also supports a “Dark Mode” theme, and as part of the VOSS Platform installation, administrators can set the default theme using the CLI.
License Management Updates#
VOSS Product Suite 25.4 enhances License Management with powerful analytics and reporting capabilities, providing a single, consolidated view of Microsoft Teams license usage, activity, and cost across Microsoft environments. By combining license assignment data with user activity insights, organizations can clearly see how Microsoft Teams licenses are being used, and where they are not.
New dashboards enable teams to identify inactive or under-utilized users, analyze usage across Microsoft Teams (including messaging, meetings, and voice), and distinguish between basic and premium usage. With built-in cost modelling and trend analysis, organizations can calculate potential savings and make data-driven decisions to optimize license allocation and reduce unnecessary spend.
Meeting Room Analytics and Reporting#
This feature adds Meeting Room support for configuration, monitoring, and room usage analytics, providing key insights into the bookings and occupancy of Microsoft meeting rooms, or Webex meeting rooms using Cisco collaboration devices.
With normalized data and rich dashboards, organizations can optimize space utilization, improve planning, and make data-driven decisions about their meeting room estate.
MCP Support for the Core Framework#
VOSS Software-as-a-Service (SaaS) Only. The VOSS Product Suite 25.4 introduces support for the Model Context Protocol (MCP), enabling secure integration between VOSS and external AI assistants, such as ChatGPT and Copilot. MCP exposes VOSS REST APIs as AI-consumable tools, allowing natural language driven tasks including user onboarding, service provisioning, and real-time transaction progress tracking. Delivered as a secure, containerized service that integrates with the VOSS Product’s existing authentication, role-based access control, and audit logging, MCP support allows customers to safely invoke VOSS actions from within their existing AI environments.
AI-Driven Anomaly Detection in the Core Framework#
VOSS Software-as-a-Service (SaaS) Only. The VOSS Product Suite now includes built-in AI-powered anomaly detection that helps you identify issues before they impact users. Rather than relying on static thresholds, the platform uses machine learning to analyze patterns in your environment and surfaces unusual behavior automatically. Just describe what you want to detect in plain language, and the system figures out how to do it.
The framework works across virtually any data that is already accessible in the VOSS Product Suite, so you can detect anomalies in service quality metrics, configuration drift from an admin-defined baseline, call patterns, and more. Detected anomalies are saved as structured records that flow naturally into your existing reports, dashboards, and alerts, giving you earlier visibility, better context, and a scalable foundation for smarter operations.
Support for Alerting on the VOSS Core Framework#
VOSS Software-as-a-Service (SaaS) only. VOSS Product Suite 25.4 introduces a new native alerting capability within the Core Framework, enhancing system monitoring and management. Administrators can define custom alert rules or modify VOSS-provided reference rules, manage them at the appropriate hierarchy level, and group related rules to simplify administration and apply shared actions.
Alerts are easy to configure with key parameters such as severity, evaluation frequency, and triggering conditions. When triggered, alerts can automatically execute predefined actions like notifications or workflows, while historical alert logs provide visibility for auditing and analysis.
Simplified PowerShell Integration#
This architectural change in VOSS Product Suite 25.4 offers the following benefits:
Removal of the dependency on customer-managed Windows PowerShell Proxy servers
Elimination of WinRM configuration requirements, including authentication and encryption considerations
Removal of the need for local administrator or domain administrator execution accounts on customer infrastructure
Reduced interaction with customer domain security baselines and GPO constraints
Improved long-term serviceability and reduced operational risk
Refer to the VOSS documentation for details on the PowerShell service, RAM requirements, migration guidance, and application setup.
Support for Custom Widget Fields#
Dashboard widgets now support custom fields.
Users can choose a value type, an operation, and one or more source columns from the resource to add calculated columns such as Sum, Average, Concat, Replace, or a Format expression.
Small Enhancements and Bug Fixes#
Alongside the new features in this release, we’ve delivered a range of smaller enhancements and fixes to improve workflows, usability, customization, accessibility, and performance in the Admin Portal. For more details, see What’s New by Category.
Upgrade Overview#
Important Information#
Important
If upgrading from 24.x to 25.4, refer to:
Upgrade Guide with ISO and TemplateMicrosoft customers:
From release 25.4, the MS PowerShell proxy server setup is no longer required or supported and can be removed, since a PowerShell server is now integrated into the platform.
Before proceeding with the upgrade to 25.4 and when using UC Automation for Microsoft Teams and Microsoft Exchange, please contact VOSS to assist regarding memory requirements for the PowerShell service on unified and application nodes. Additional memory of at least 8GB of RAM may need to be available.
For details, refer to:
Before upgrading, check if the boot password is enabled. Use the command:
system boot password.If it is enabled, the password should either be:
disabled using the command
system boot password disable
or
enabled and updated to a known value using the command
system boot password enable
For details, refer to the topic: “System Boot Passwords” in the Platform Guide.
Before upgrading to release 25.4, remove duplicate Model Instance Filters (MIF’s) above HCS level before running upgrades. A pre-check script will stop the upgrade if duplicates are found. For further details, refer to the ISO Upgrade Guide.
Before upgrading:
Inspect the Release and Upgrade Notes of all releases in your upgrade path. These documents may contain additional upgrade information. All documentation for previous releases, including Release and Upgrade Notes, are available from the VOSS Product Suite Documentation website.
After upgrading to Automate 25.1 or above, the default
full-transactionsync schedule for theinsights-voss-syncsync app is hourly. For more details, refer to the Insights Analytics topic in the Platform Guide.
Upgrade Notes#
There are a number of changes in a new release that could relate to exposing new features or capabilities in the system. The default, out-of-the box system would expose these. However, on a system where the configuration around the user experience has been applied, this might mean some changes to configured menus, display policies, and so on to expose the new features in your setup.
Where relevant, we have included this information with the feature information to assist in planning for configuration changes as part of the upgrades. This setup could vary.
Issues containing upgrade notes in this release:
Features: Summary#
Core Portal#
EKB-28213: Allow DashboardColorMapping and DashboardValueMapping to be cloned down with the same name.
EKB-27783: Reduce icon, border size, and add a “more” visual cue on widget links.
EKB-26618: Dropdown resource link icon improvements.
EKB-26867: Changes to Y-Axis number precision.
EKB-28285: Allow full export of dashboard when counter and link menus exist on a dashboard with Automate Analyzed data.
EKB-25720: Support for custom widget fields.
Core Product#
VOSS-1594: MCP Support for the Core Framework.
VOSS-1593: Support Anomaly Detection in the Core Framework.
VOSS-1547: Themes: Enhancements.
VOSS-1530: Support for Alerting on Core Framework.
VOSS-1470: Remove the need for Standalone Microsoft PowerShell Proxy.
EKB-27247: System user audit: extend system user existence search with configured MultivendorUserMappingMacros .
EKB-24350: Support purge operation in bulk loaders.
EKB-13086: Apply uniqueness constraint on MIF’s.
Core Platform#
UC Automation#
EKB-28433: Allow data/NetworkDeviceListReference change on a site when models exist at the site associated to the current NDLR.
EKB-28284: Add lines 6, 7, 8 to Automate Analyzed resource for Cisco UCM phone.
EKB-28167: Update field title and help text for Phone field on view/UserPhoneMovePhones_VIEW.
EKB-28118: Allow Webex location PSTN enable and disable.
EKB-28115: Webex API change 27 April 2026: Id fields in Device should support null values.
EKB-28085: Cisco auto attendant: hide hyperlink for schedule.
EKB-28014: Add 88XX and 98XX phones to HcsDeviceTypeDAT instances.
EKB-28002: Add linked site to “Automate - Self Service Role”.
EKB-27966: Add MRA support for Cisco 9811.
EKB-27939: Add LinkedSite to RuleModelHierarchyType for view/AddPhone and view/AddSubscriberFromProfile.
EKB-27937: Rework Webex “Replace Device” to work with new dynamic settings and multi line.
EKB-27828: Overbuild: CUCM time schedule and related device models not moved to site.
EKB-27817: Add provider and reseller to rule model hierarchy type for view/MultiVendorServiceUserMove_VIEW.
EKB-27711: Rework Webex devices to support dynamic configuration.
EKB-27489: Add email address to QuickAddSubscriber Message section when an email is sent.
EKB-27416: MS QAS fails when enabling “Use next available line” option if INI has vendor as “Cisco, Microsoft”.
EKB-27401: Webex API change 15 June 2026: User Config Executive Assistant.
EKB-27298: Overbuild by MFC missing from 25.3 menus.
EKB-27248: System user provisioning (all vendors): stamp all vendor username fields applicable for onboard/offboard features.
EKB-27139: Skip update of Webex user during LDAP user update if Control Hub is DirSynced.
EKB-26675: Remove resource account Basic Auth fields from MS tenant forms and docs.
EKB-26529: QuickSubscriber - Allow CUCMUser move from customer level when DataUser is already at the target site.
EKB-26494: Full dial out policy support.
EKB-26493: Support additional flexibility to choose a range of numbers and emergency location for number updates.
EKB-26113: Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name.
EKB-26112: Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name.
EKB-26111: Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name.
EKB-25307: Allow Webex Quick Add Device to add multiple lines.
EKB-25296: Allow secondary numbers to be added to Webex users.
EKB-23110: Webex number inventory audit - update configuration of Webex number auditing.
EKB-21838: CUCM MOH upload and CUC playback of files fails due to CUCM/CUC login being SSO-enabled.
EKB-20034: Delete hybrid Cisco MS user from relation/User leaves user at site level.
License Management#
VOSS-1622: License Management Updates.
Security Management#
VOSS-1623: Security Management (Defender) Updates.
Collector (Arbitrator)#
VOSS-1615: Create report of users across multiple Arbitrators & Dashboard servers.
VOSS-1601: SNMPv3 support & Audiocode Probes.
VOSS-1490: Meeting Room Analytics and Reporting.
EKB-27982: Increasing RAM efficiency of Microsoft Teams processing.
EKB-27364: Upgrade PostgreSQL to the latest version.
EKB-27361: Modify probe engine to have probe group and asset paired.
EKB-27080: Upgrade runit to the latest version.
EKB-26730: Insights should include or support installation of Hyper V Integration Services.
EKB-26692: Investigate - Dashboard session cookies security issue.
EKB-26617: Upgrade OpenSSH to the latest version.
EKB-26538: Include the source IP address of the sending device in the audit logs.
Features: Detail#
Core Portal#
EKB-28213: Allow DashboardColorMapping and DashboardValueMapping to be cloned down with the same name. Dashboard color and value mappings can now be cloned across hierarchy levels using the same name, with the system automatically applying the lowest-level available mapping.
EKB-27783: Reduce icon, border size, and add a “more” visual cue on widget links. This enhancement updates widget links with smaller icons and borders and adds a scroll indicator to show and access additional items.
EKB-26618: Dropdown resource link icon improvements. This enhancement improves dropdown link behavior by hiding unavailable links, routing to the appropriate relation views, and adding options to hide or override link targets.
EKB-26867: Changes to Y-Axis number precision. Updates chart rendering so Y-axis number precision dynamically adjusts based on the number scale, improving readability across different value ranges.
EKB-28285: Allow full export of dashboard when counter and link menus exist on a dashboard with Automate Analyzed data. This enhancement allows the “Export All Data” functionality to export all Insights widgets from a dashboard, even when Automate counter and link widgets are present.
EKB-25720: Support for custom widget fields. Dashboard widgets now support custom fields: users can add calculated columns (e.g. Sum, Average, Concat, Replace, or a Format expression) by choosing a value type, an operation, and one or more source columns from the resource.
Core Product#
VOSS-1594: MCP Support for the Core Framework. This feature introduces a MCP server as a standalone, cloud-hosted application that exposes Automate subscriber onboarding tooling to MCP-aware AI clients (Claude, ChatGPT, etc.) over an OAuth-authenticated connection. MCP calls run as the signed-in user, honoring their existing Automate role and permissions. Available on SaaS deployments only.
VOSS-1593: Support Anomaly Detection in the Core Framework. VOSS Software-as-a-Service (SaaS) only. This feature adds AI-driven anomaly detection to the VOSS Product Suite. See the release highlights for details.
VOSS-1547: Themes: Enhancements. This feature delivers significant improvement for theme management, provide greater flexibility and control. Key enhancements include:
More flexible role configuration: Themes are no longer required to be explicitly assigned at the role level, enabling cleaner setups and relying on sensible defaults when needed.
Default themes have been renamed to more accurate and descriptive names that reflect their intended function within the product.
Default themes for each user interface (Administration, Self Service) are now managed centrally via Global System Settings, allowing customers to more easily configure, white-label, and ensure consistent fallback behavior (especially useful during upgrades).
Enhanced upload and download support for themes across both the Administration UI and the CLI, simplifying installation, transfer, and backup tasks.
Expanded dark mode support for the Administration interface, delivering improved accessibility and visual clarity.
Note that “dark mode” options are supported only for Administration themes.
Upgrade Notes - VOSS-1547
Introduction
This upgrade delivers a unified theme model with separate light and dark palette support for administration themes, renamed interface-scoped official shipped themes, upload/download tooling, and CLI and REST operations for listing, uploading, downloading, displaying, and setting of default themes. In regards to white-labeling, it reduces the risk of branding reverting after platform upgrades and adds administrator control over dark mode palettes and whether the application defaults to light, dark, or the user’s system/browser preference when a theme supports dark mode.
What this release provides
Upload, download, list, show, and set default themes from both the CLI and the UI.
Branding and default theme selection driven from Global System Settings (
data/Settings) so customizations are less likely to revert unexpectedly during upgrades.Optional per-theme supports dark mode: When enabled, administrators configure light and dark palettes and can choose Light, Dark, or System, where supported.
Technical implementation details
Legacy theme_customisation data is migrated into structured light/dark theme customization blocks; portal-related defaults are aligned with
data/Settings(including fallbacks such as voss_platform and voss_selfservice where applicable).Single “login theme” semantics give way to interface-scoped themes and settings-driven defaults: use Default Administration Theme and Default Self Service Theme in System Global Settings; each selector lists only themes of the correct type (admin vs service).
Dark Mode Support: Administration interfaces only.
CLI: Theme commands support operational listing, upload/download, and default theme management.
REST / tool APIs: Theme operations may include download, upload, show/set default theme.
Post-upgrade verification (acceptance-oriented)
Review System Global Settings (
data/Settings) for Default Administration Theme and Default Self Service Theme and confirm values match your intended branding.Review
data/Themerecords: Existing custom themes remain light mode only until an administrator enables supports dark mode and completes dark mode branding.For custom themes, verify that Button Background Color matches Primary Color (light mode only)
Validate login and session flows for Administration, including role-based theme selection and fallback to interface defaults.
Confirm custom branding persists through upgrade (no unexpected reversion to stock VOSS branding) and that default theme behavior matches your runbooks.
Where the shipped (administration) VOSS theme (voss_platform) has been set (which supports dark mode), administrators defaulting to System may see an immediate appearance change if the OS/browser prefers dark; custom themes stay unchanged until dark mode is enabled and configured.
Note: Integrations, bulk loaders, and automation that reference legacy theme fields or login-theme assumptions should be reviewed and updated. When relying on theme ZIP download/upload, verify that all required assets for your Administration UI is present in the bundle.
VOSS-1530: Support for Alerting on Core Framework. VOSS Software-as-a-Service (SaaS) only. VOSS Product Suite 25.4 introduces a brand new Alerting Capability on the VOSS Core Framework, delivering enhanced system monitoring and management capabilities. Key highlights include:
Custom Alert Rule Management:
Define tailored alert rules or modify out-of-the-box rules provided by VOSS
Manage rules at various hierarchy levels to ensure context-specific alerting
Group rules for simplified administration and shared actions
Streamlined Configuration:
Easily set rule parameters like severity, frequency, and triggering conditions
Actionable Alerts:
Automate responses by defining alert-triggered actions, such as notifications or workflows
Comprehensive Reporting:
View historical alert logs for auditing and analysis.
VOSS-1470: Remove the need for Standalone Microsoft PowerShell Proxy. This feature replaces the standalone Microsoft PowerShell Proxy with an integrated PowerShell Core service, simplifying configuration, removing external dependencies, and improving reliability and security.
EKB-27247: System user audit: extend system user existence search with configured MultivendorUserMappingMacros. System User Audit now uses configured Multivendor User Mapping Macros to more accurately identify existing users, reducing false audit failures when system and device usernames differ.
EKB-24350: Support purge operation in bulk loaders. This enhancement adds support for purge operations in bulk loaders, enabling bulk purging even when instances are not present on the device.
EKB-13086: Apply uniqueness constraint on MIF’s. This enhancement enforces unique MIF names per hierarchy, preventing duplicates and ensuring consistent behavior.
Core Platform#
EKB-28587: Upgrade OpenSSH package to 8.9p1-3ubuntu0.15. This update upgrades OpenSSH package to 8.9p1-3ubuntu0.15 to address the following CVEs: CVE-2026-35385, CVE-2026-35386, CVE-2026-35387, CVE-2026-35388, CVE-2026-35414.
EKB-26981: Add robots.txt file to prevent search engine crawling. This enhancement introduces a robots.txt file to prevent search engine crawling of Automate sites.
EKB-23791: Remove disk latency logging and alert. The system no longer logs disk latency or raises alerts for it, reducing unnecessary logging and avoiding noisy, low-value alerts.
EKB-17014: Disable SSL/TLS weak cipher suites. The platform is moving toward modern security standards, and while TLS 1.2 still works today, it is being phased out. A future release will disable it, so systems should be updated to use TLS 1.3.
UC Automation#
EKB-28433: Allow data/NetworkDeviceListReference change on a site when models exist at the site associated to the current NDLR. This enhancement adds an optional “allow_ndlr_change” macro, set to {{ fn.true }}, to temporarily allow changing a site’s ‘data/NetworkDeviceListReference’ when model records associated with the current NDLR still exist, supporting controlled site migrations between NDL clusters. This allows the dialplan from two clusters to be assigned to a site during the site cutover, making rollback quicker and safer. Set the macro only during the cutover period and delete it or set it to {{ fn.false }} after the cutover period.
EKB-28284: Add lines 6, 7, 8 to Automate Analyzed resource for Cisco UCM phone. This enhancement extends Cisco UCM Phone reporting to support up to 8 line patterns (from 5) by updating the reporter-resource generation logic.
EKB-28167: Update field title and help text for Phone field on view/UserPhoneMovePhones_VIEW. This enhancement updates the Phone field label and help text to clearly indicate that only unassociated phones can be selected and moved.
EKB-28118: Allow Webex location PSTN enable and disable. This enhancement allows PSTN calling to be enabled or disabled when creating a Webex location or updating an existing Webex location.
EKB-28115: Webex API change 27 April 2026: Id fields in Device should support null values. This update adds support for recent Webex API changes (27 April 2026) by allowing the Device provisioning workflow to handle null values returned for the id, webexDeviceId, and callingDeviceId fields, ensuring provisioning and synchronization continue successfully when these identifiers are not yet populated.
EKB-28085: Cisco auto attendant: hide hyperlink for schedule. This enhancement removes the Schedule field hyperlink in Cisco Auto Attendant to prevent incorrect navigation.
EKB-28014: Add 88XX and 98XX phones to HcsDeviceTypeDAT instances. This enhancement adds support for Cisco 88XX and 98XX device types.
EKB-28002: Add linked site to “Automate - Self Service Role”. This enhancement updates the “Automate - Self Service” role to include linked site in its permitted hierarchies.
EKB-27966: Add MRA support for Cisco 9811. This enhancement adds MRA support for the Cisco 9811 by ensuring MRA-related configuration options are available based on device capabilities.
EKB-27939: Add LinkedSite to RuleModelHierarchyType for view/AddPhone and view/AddSubscriberFromProfile. This enhancement adds linked site to the permitted hierarchies for AddPhone and AddSubscriberFromProfile views, enabling these views to function correctly at the linked site level.
EKB-27937: Rework Webex “Replace Device” to work with new dynamic settings and multi line. Reworks the Webex Replace Device functionality to support replacing devices that use dynamic configuration settings, including multi-line devices.
EKB-27828: Overbuild: CUCM time schedule and related device models not moved to site. This enhancement improves the Overbuild process so that Remote Destination schedules and all related CUCM time-based objects are correctly moved to the site, preventing missing schedules and broken time-based configurations after migrations. The default model type list and CUCM overbuild resources were also updated to include three additional models: device/cucm/TodAccess, device/cucm/TimeSchedule, device/cucm/TimePeriod
EKB-27817: Add provider and reseller to rule model hierarchy type for view/MultiVendorServiceUserMove_VIEW. Resolved an issue where the QAS Move User workflow failed for CUCM users imported at the Provider or Reseller hierarchy levels, due to incorrect handling of higher-level contexts. The workflow now properly supports these hierarchy levels, allowing successful user moves.
EKB-27711: Rework Webex devices to support dynamic configuration. This enhancement allows Webex Devices to be managed using either the existing fixed schema method or dynamic configuration models, enabling support for third-party devices and select Cisco devices such as ATAs.
EKB-27489: Add email address to QuickAddSubscriber Message section when an email is sent. This enhancement updates Quick Add transaction messages to include the recipient email address when an email is sent.
EKB-27416: MS QAS fails when enabling “Use next available line” option if INI has vendor as “Cisco, Microsoft”. This enhancement enables Microsoft Quick Subscriber to use the “Next available line” when number inventory vendors are set to Cisco, Microsoft.
EKB-27401: Webex API change 15 June 2026: User Config Executive Assistant. Webex API change (15 June 2026): Updates User Config Executive Assistant retrieval to support changes in how Executive Assistant relationships are returned by the Webex API.
EKB-27298: Overbuild by MFC missing from 25.3 menus. This enhancement makes non UC-related overbuild tools available again in the default menus and dashboards, restoring their visibility and accessibility in the standard UI.
EKB-27248: System user provisioning (all vendors): stamp all vendor username fields applicable for onboard/offboard features. This enhancement ensures vendor-specific usernames are automatically maintained during user onboarding, updates, moves, and offboarding across all supported vendors (including Cisco, Microsoft, and Webex), improving identity consistency and eliminating the need for manual cleanup or additional audit steps.
EKB-27139: Skip update of Webex user during LDAP user update if Control Hub is DirSynced. This enhancement skips Webex user updates during LDAP-triggered user updates when Control Hub directory sync is enabled.
EKB-26675: Remove resource account Basic Auth fields from MS tenant forms and docs. Removes legacy Microsoft Basic Auth fields from CsOnlineApplicationInstance and tenant configurations.
EKB-26529: QuickSubscriber - Allow CUCMUser move from customer level when DataUser is already at the target site. This enhancement allows QuickSubscriber to correctly move CUCM users from customer to site when the data user is already at the target site.
EKB-26494: Full dial out policy support. This enhancement adds support for the full set of Microsoft Teams dial-out policies, replacing the previous limitation of three hardcoded options.
EKB-26493: Support additional flexibility to choose a range of numbers and emergency location for number updates. This enhancement adds support for selecting ranges of numbers and assigning or updating emergency location details during number updates.
EKB-26113: Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name. Webex API change 31 March 2026: Deprecation of firstName, lastName, and displayName in Caller ID and Dialing Name Webex is changing how Caller ID and Dialing Names are configured. Legacy name fields (such as firstName, lastName, and displayName) are being deprecated in favor of more granular controls: directLineCallerIdName and dialByName. Affected features: Auto Attendant, Call Queue, Hunt Group, Paging Group, Voicemail Group, Workspaces, Users.
EKB-26112: Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name. Webex API change 31 March 2026: Deprecation of firstName, lastName, and displayName in Caller ID and Dialing Name Webex is changing how Caller ID and Dialing Names are configured. Legacy name fields (such as firstName, lastName, and displayName) are being deprecated in favor of more granular controls: directLineCallerIdName and dialByName. Affected features: Auto Attendant, Call Queue, Hunt Group, Paging Group, Voicemail Group, Workspaces, Users.
EKB-26111: Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name. Webex API change 31 March 2026: Deprecation of firstName, lastName and displayName in Caller ID and Dialing Name Webex is changing how Caller ID and Dialing Names are configured. Legacy name fields (such as firstName, lastName, and displayName) are being deprecated in favor of more granular controls: directLineCallerIdName and dialByName. Affected features: Auto Attendant, Call Queue, Hunt Group, Paging Group, Voicemail Group, Workspaces, Users.
EKB-25307: Allow Webex Quick Add Device to add multiple lines. This enhancement enables Webex Quick Add Device to provision multiple lines on a single device, using port-based configuration to apply and manage line assignments.
EKB-25296: Allow secondary numbers to be added to Webex users. This enhancement allows secondary lines to be added and managed for Webex users both during user creation via Webex Quick Add Subscriber and when updating existing users through the Webex user page.
EKB-23110: Webex number inventory audit - update configuration of Webex number auditing. Fixed incorrect Status and Usage mappings in the Webex Number Inventory Audit for Webex Calling service types.
EKB-21838: CUCM MOH upload and CUC playback of files fails due to CUCM/CUC login being SSO-enabled. This enhancement adds SSO-aware login handling for CUCM and Unity Connection, enabling MOH upload and media playback operations to work correctly in SSO-enabled environments.
EKB-20034: Delete hybrid Cisco MS user from relation/User leaves user at site level. This enhancement updates hybrid user deletion to ensure Microsoft user data is moved from the site level during deletion, preventing residual user data at the site level.
License Management#
VOSS-1622: License Management Updates. VOSS 25.4 introduces significant updates to the License Management module, enabling enhanced visibility and optimization of Microsoft Teams license usage. Key features include:
User Cost Analysis: View individual user costs based on assigned licenses for improved budgeting and tracking.
Activity-Based Filtering: Filter users by activity, such as active usage, inactivity, or no usage, over a specific period.
Teams Usage Insights: Analyze Teams usage across messaging, conferencing, voice services, and PSTN usage to identify optimization opportunities.
Optimization Dashboard: Identify underutilized licenses with inactive users and calculate potential cost savings.
Usage Trends: Track user activity trends over time, enabling insights into license utilization patterns for up to three months.
These updates empower administrators to effectively manage licenses, reduce costs, and optimize resource allocation. For detailed information, refer to the VOSS 25.4 documentation.
Security Management#
VOSS-1623: Security Management (Defender) Updates. This feature exposes a new Overbuild tool, allowing admins to configure flexible filters for targeting specific elements to be moved into lower hierarchies.
Collector (Arbitrator)#
VOSS-1615: Create report of users across multiple Arbitrators & Dashboard servers. Legacy dashboard allows creation of report of users across arbitrators and legacy dashboard servers. This includes a change to the arbitrator and legacy dashboard API to include user permission group.
Upgrade Notes - VOSS-1615
After upgrade, a new data source is introduced. Update any existing configurations or integrations to use the new source and verify data availability.
VOSS-1601: SNMPv3 support & Audiocode Probes. The feature delivers updated SNMP v3 support for Audiocodes.
VOSS-1490: Meeting Room Analytics and Reporting. This feature supports a consolidated view of your entire meeting room estate, removing the need for disparate data sources across various vendor tools, and reducing the effort and resources needed to manage and understand your environment. Key capabilities include:
Be notified on key issues related to the meeting room performance
View inventory of meeting rooms/devices including current firmware versions highlighting non-compliant versions
View utilization information for meeting rooms to better understand ROI in terms of:
Estate planning and optimization, ensuring the right mix of rooms, equipment, capacity
Improved resource utilization, providing a view on “no shows, wrong types of rooms, and utilization of equipment in rooms
Ability to devolve management and visibility of the environment (regional, agency, service desks)
EKB-27982: Increasing RAM efficiency of Microsoft Teams processing. This enhancement improves RAM efficiency of Microsoft Teams data collection to better support processing large data sets.
EKB-27364: Upgrade PostgreSQL to the latest version. This update upgrades the platform’s PostgreSQL database to version 16.12, ensuring the system runs on the latest supported PostgreSQL release with improved security, stability, and performance.
EKB-27361: Modify probe engine to have probe group and asset paired. This enhancement updates the VOSS Arbitrator probe engine by replacing the single dedicated thread per probe group with a dedicated thread per probe group and asset pair, simplifying probe group configuration and improving probe execution performance and scalability.
EKB-27080: Upgrade runit to the latest version. This update upgrades runit to version 2.3.0.
EKB-26730: Insights should include or support installation of Hyper V Integration Services. The systems are now available with the following Hyper Visors: VMWARE, HYPER-V, NUTANIX
EKB-26692: Investigate - Dashboard session cookies security issue. This update strengthens application security by enforcing stricter browser security policies and updating file download handling to prevent session data from being exposed in download links.
EKB-26617: Upgrade OpenSSH to the latest version. The system’s OpenSSH component is being upgraded to the latest supported version.
EKB-26538: Include the source IP address of the sending device in the audit logs. When a user logs in on the GUI through a browser, the user’s ClientIP address is logged as part of the “AccessEvent” logs.
Defects Fixed: Detail#
Core Portal#
EKB-27797: Spelling mistake on Cisco Line (Line Usage) Extension Mobility. Fixes spelling error in the Cisco Line (Line Usage) labels for Extension Mobility Profiles.
EKB-27744: MultiVendorSubscriber instance, imported at Reseller, does not load when hierarchy breadcrumb is set to Provider. Fixed MultiVendorSubscriber instances imported at Reseller level failing to load in the GUI when the hierarchy breadcrumb is set to Provider level.
EKB-27731: Update CSF phone, from device/cucm/Phone, fails with “Failed to save device/cucm/Phone. [modify] not supported”. Resolves an issue that was preventing updates to a Cisco Unified Client Services Framework when ICE (Interactive Connectivity Establishment) Vendor Config had been set.
EKB-27472: Cisco Line: CTI RoutePoints not shown under “Line Usage”. Resolves an issue where CTI Route Points were not shown under Line Usage for Cisco Lines by ensuring they are correctly included in the Line Usage display.
EKB-27421: Transaction - Failed Async Transaction Submit Time in GMT not Computer Time. Resolves an issue where async transaction times displayed inconsistently due to time zone parsing. This fix standardizes timestamp formatting and corrects failed async row highlighting.
EKB-27372: Performance issue on forms with large arrays causes browser to hang/freeze. Resolves an issue where loading pages with forms containing large arrays of items caused the web browser to hang or freeze, by optimizing how large array data is processed and rendered to improve UI performance and responsiveness.
EKB-27271: Clicking the current Menu link no longer refreshes the page. Resolves an issue where clicking the currently selected menu link no longer refreshed the page by restoring the ability for the active menu item to trigger a page refresh when clicked.
EKB-27249: Add Phone modal doesn’t popup for MultiVendorSubscriber at site with 400K+ number instances. The system now limits and caches the API calls used when adding services to a multi vendor subscriber, so the Add Phone screen works reliably even in sites with very large number inventories.
EKB-26864: Initial dashboard load does not reflect the time picker selection. Resolves an issue where dashboard widgets did not reflect the configured default time range on initial load.
EKB-26428: Dashboard links excluded by Action search. Resolves an issue where dashboard links were excluded from Action Search results and navigation was incorrect, by including dashboard links in search and correcting dashboard paths.
EKB-27709: User trend reports 0 due to overlapping Insights multivendor and trending syncs. Resolves an issue where Trend graphs displayed zero data when Insights multivendor and trending syncs overlapped.
EKB-27587: Dashboard drill-down does not work when using a REGEX against license names with special characters in them. Resolves an issue where dashboard drill-down returned no data for license names with special characters when using regex filters, by escaping special characters in the filter.
EKB-27322: Dashboard trending data is not stored per hierarchy per day causing higher disk space usage. Resolves an issue where the dashboard trending refresh logic did not correctly group data by hierarchy per day, by fixing the grouping logic so database rows are stored correctly per hierarchy per day, reducing unnecessary database storage usage.
EKB-28525: Dashboard export execution includes data from outside the hierarchy level of the dashboard export instance. Fixes an issue where Dashboard Export does not filter data based on owner users’ hierarchy.
EKB-28157: Drilldown does not work on counter widgets. Resolves an issue where drilldown actions were not working on counter widgets.
Core Product#
EKB-28388: Admins with “authorized roles” cannot see transactions performed by other authorized admin users. Resolves an issue where authorized admins could not see transactions performed by other authorized admin users within their own hierarchy and below.
EKB-28289: Cisco analog gateway: Product field is empty when modifying VG410 gateway. Updated CUCM schema packaging now includes missing supported Cisco analog gateway models (including VG410), ensuring the Product field is populated correctly after gateway import and overbuild.
EKB-28238: Update MS Tenant fails on “Create Push Certificate To Windows”. Resolves an issue where PFX certificate files were not fully compatible with Windows Server 2016, causing failures during Windows-based certificate operations.
EKB-28122: Sending large dashboard export report over email fails with “Read timed out. (read timeout=30)”. Resolves an issue where sending large Dashboard Export reports via email failed with a Read timed out (read timeout=30) error when the dashboard export took longer than 30 seconds by allowing the email process to complete successfully for long-running exports.
EKB-28101: Cisco CUCM: Uploading large MOH file fails after 60 seconds due timeout waiting for CUCM. Resolves an issue where uploading a large MOH file was failing after 60 seconds due to a timeout waiting for CUCM. The default Selenium timeout for CUCM MOH uploads is now 600 seconds. Very large files may still take time, but will no longer fail at 60 seconds.
EKB-27918: Macro evaluation for controlling menus fails when using {{ fn.request_user_name }}. Resolves an issue where macros used to control menu visibility failed when using {{ fn.request_user_name }} by correcting its evaluation priority during Automate administrator login, enabling username-based conditional logic (including use with the IS_MIGRATE_USER macro) to control visibility of the “VOSS Migrate Cross Launch” menu.
EKB-27825: Import device mobility on Call Manager 12.5 fails. Resolves an issue where Device Mobility import failed from Cisco Unified Call Manager version 12.5.
EKB-27733: fn.next_available_line does not work with LDAP FTP. Resolves an issue where fn.next_available_line fails after 10 retries and halts an LDAP sync.
EKB-27522: Upgrade to 25.1 failed when core debug is set to 1. Resolves an issue where upgrades failed when core debug mode (debug=1) was enabled due to missing logging configuration.
EKB-27467: Cisco CUCM: CNF data sync schedule does not execute after setting timed execution values. Resolves an issue where the Cisco CUCM CNF DataSync schedule did not execute after Timed Execution values were set and activated by correcting the schedule execution logic so the CNF data sync runs automatically according to the configured timed schedule.
EKB-27370: Inefficient GUIRule with fn.get_lines takes extended time and results in HTTP 502. Resolves an issue where a GUIRule using the inefficient fn.get_lines function took excessively long to execute and caused HTTP 502 errors, by removing the inefficient function and incorporating its logic into an optimized implementation to improve performance.
EKB-27368: QAS LdapUserWriteBack - Fields with existing values are not being set to blank. Resolves an issue where the QAS LDAP User Write-Back process could not clear fields with existing values or set fields that previously had no value, by correcting the write-back logic to properly handle both clearing existing attributes and populating previously empty LDAP fields.
EKB-27367: MongoDB: CVE-2025-14847: zlib heap memory leak. Resolves an issue where the MongoDB zlib heap memory leak vulnerability (CVE-2025-14847) could affect system stability by upgrading MongoDB to version 8.0.17, which mitigates the vulnerability.
EKB-26460: Local users cannot authenticate if hierarchy is below the LDAP server and auth method is LDAP. Resolves an issue where users configured for LDAP authentication could not authenticate when located below the LDAP server hierarchy by disregarding LDAP server scope when the user authentication method is set to LDAP.
EKB-25423: Memory growth post 25.1 and MS syncs. The system now uses memory more efficiently when syncing large amounts of data, preventing excessive RAM usage and improving stability during big Microsoft and other data sync operations.
EKB-25294: Updating a theme using tool/Theme does not create a transaction. Resolves an issue where updating a theme using
tool/Themedid not create a transaction, preventing audit tracking of theme changes, by ensuring that theme updates are properly logged as transactions.
EKB-24240: Unrestricted field length for input fields. All string fields now have a maximum length (1024 characters by default) to prevent unlimited values. Existing oversized data is not changed during upgrade, but if those records are edited in the future, updates may fail unless the oversized values are reduced.
EKB-17551: Multivendor Move does not roll back Microsoft User device models on failure. Resolves an issue where Microsoft Teams user device models were not rolled back to the original site when a MultiVendor Service User Move transaction failed.
Core Platform#
EKB-28447: Terraform file provisioner writes double-quoted exports; passwords with $ are truncated. Resolves an issue where Terraform exports using double quotes caused passwords with
$to be truncated, by using single-quoted exports to preserve special characters.
EKB-27897: Content security policy: upgrade-insecure-requests directive. Resolves an issue where the upgrade-insecure-requests directive was missing or inconsistently applied in the Content Security Policy, causing security scan DNS errors, by adding and enforcing the directive across all endpoints and responses.
EKB-27350: SNMP alert not triggered when insights database partition full. Resolves an issue where SNMP alerts were not triggered when the Insights database disk became full, potentially causing service outages without notification. The fix adds monitoring for the database partition and updates it to track the correct data directory.
EKB-27004: Azure admins should not be allowed to create Core platform users with root access. Resolves an issue where Azure administrators could gain unintended elevated access on Automate nodes via Azure Administration tools. The fix restricts this behavior and ensures access is only granted through intended configuration.
EKB-26847: Permissions policy missing. Resolves an issue where the Permissions policy header was missing from the Automate portal, leading to security scan findings. The fix adds the header with default values and applies it across all nginx endpoints.
UC Automation Self Service#
EKB-26956: Selfservice theme is intermittently slow to load on first login. Resolves an issue where the Self Service portal displayed placeholder text on first login due to language translations not being fully loaded. The fix ensures that while the UI waits for translations to load, a loader is displayed instead of placeholder text.
UC Automation#
EKB-28507: MsolUser sync with filters fails when Microsoft license data is inconsistent. Fixes filtered MsolUser syncs when Microsoft license data is inconsistent
EKB-28346: MultiVendorSubscriber: Role dropdown shows roles which should not be visible. MultiVendorSubscriber role options now match
relation/Userrestrictions so only assignable roles are shown, preventing exposure of non-assignable roles such as TDK.
EKB-28254: Dial out permission setting & outbound calling setting issue is an immediate problem on the ATO MACD’s. Resolves an issue where dial-out and outbound calling settings could be overwritten when using org-level defaults. The fix allows blank values and preserves existing settings during updates.
EKB-28252: Bulk load Cisco subscriber with Webex fails if Calling Behavior is “Calling in Webex App (Unified CM)”. Resolves an issue where bulk loading a subscriber was failing without a mailid set and calling behavior was set to “Calling in Webex App (Unified CM)”.
EKB-28158: Unable to update, create, or save auto attendant schedule - Healthcare. Updated Auto Attendant schedule management to use the primary (IsPrimary) Unity Location when managing schedules.
EKB-28120: Move Cisco Phone: Default CSS is not set to boolean True when “Move Lines to new site” is unchecked (set to False). Resolves an issue where moving a Cisco Phone using view/UserPhoneMovePhones_VIEW could fail when Default CSS was set to boolean True and “Move Lines to new site” was unchecked, by correctly handling the Default CSS setting for this move scenario.
EKB-28091: Cisco Extension Mobility: Number is not moved to “Cooling” when performing delete on relation/SubscriberDeviceProfile. Resolves an issue where a number was not moved to the “Cooling” state when deleting a relation/SubscriberDeviceProfile by correctly transitioning the number to Cooling upon removal of the Extension Mobility association.
EKB-28086: Quick Subscriber: When switching from non-LDAP to LDAP user, the password field needs to be cleared. Fixes an issue where the password field on view/QuickSubscriber remained populated even when the field was hidden, including when switching from non-LDAP to LDAP users.
EKB-28013: Adding Webex Workspace with Webex Calling does not set number as “Used”. Resolves an issue where the internal number was not set to “Used” when adding a Webex Workspace with Webex Calling.
EKB-27917: Webex: Work Telephone Number is not removed when UCM Calling license is removed. Resolves an issue where the Webex work telephone number was not removed when the UCM Calling license was removed due to missing deprovisioning data. The fix ensures the number is cleared correctly during deprovisioning.
EKB-27852: Microsoft: Importing the “Global” CsTeamsCallHoldPolicy fails when Quick Import is false. Resolves an issue where syncing CsTeamsCallHoldPolicy instances without a FileID (including the Global policy) failed, particularly when Quick Import was disabled.
EKB-27847: Modifying Internal Number to set vendor as Webex Calling does not set number type as Phone Number. Resolves an issue where you cannot set the internal_number_type when vendor equals Webex Calling via NumberInventoryRangeMgmtVIEW.
EKB-27826: Webex Contact Centre: Import fails device/spark/CXUserProfile ‘list’ object has no attribute ‘get’- 2 occurrences. Importing Webex Contact Centre user profiles no longer fails when Resource Collections are configured, because the system now correctly handles the data returned in those cases.
EKB-27771: CsOnlineUser sync fails as filter uses Equals condition for FeatureTypes. Resolves an issue where the CsOnlineUser sync failed because the filter used an Equals condition for FeatureTypes.
EKB-27714: User with Authorized Admin hierarchy assigned does not get a site list on number inventory audit. This fix allows for site or business key values in the Authorized Admin Hierarchy transfer box to ensure sites are correctly displayed and selectable in Number Inventory Audit.
EKB-27695: Analog gateway overbuild issues at reseller level. Fixes an issue where running the Analog Gateway Overbuild utility at Reseller level fails when Shared UC Apps are added at Reseller.
EKB-27687: Update Hcs Cti Route Point REL - Failing with Line Data does not conform to schema. Resolves an issue when updating a CTI Route Point instance where the pattern is not set.
EKB-27673: Authorized admin hierarchy removal issue - temporary full access for customer admin. Refresh user role when adding or deleting Authorized Admin Hierarchy.
EKB-27665: Setting MRA service domain in Quick Add Subscriber CFT is not working. Resolves an issue to allow the MRA service domain to be set correctly via a Configuration Template (CFT) when using Quick Add Subscriber (QAG), supporting multiple valid MRA configuration scenarios.
EKB-27631: Webex: Avatar is overwritten on user update. Updating a Webex user no longer removes or resets their profile picture unless the avatar itself is explicitly modified.
EKB-27564: Webex QAS does not apply CX template. Resolves an issue where Webex Quick Add Subscriber did not apply CX settings from the selected Quick Add Group by ensuring CX templates and related configuration are correctly applied when provisioning CX users.
EKB-27557: Deleting shared tenant customer does not remove customer from data/HCSHcmfCUCxnClusterDAT and data/HCSHcmfCUCMClusterDAT. Resolves an issue where deleting a shared tenant customer left orphaned references in shared cluster data, causing failures in subsequent operations. The fix ensures these references are correctly identified and removed during deletion.
EKB-27555: SDD: cannot add custom values to additionalDevicePool fields. Fixed the Site Defaults Doc Overbuild additionalDevicePool field to accept custom values and macros in addition to predefined dropdown options.
EKB-27533: Create GS AGW Add Port VIEW VG420 adding on slots that have no cards. Resolves an issue where the “Add Port to Analog Gateway” feature assigned new ports to incorrect or empty slots on Cisco VG420 gateways by updating the slot/card mapping logic to ensure ports are added only to slots with installed cards.
EKB-27514: AdLdapUser_device_ldap_user_CFT gets cloned by mistake at every site. Resolves an issue where the AdLdapUser_device_ldap_user_CFT configuration template was incorrectly cloned at every Site by fixing the template handling logic so the single shared template is reused instead of duplicated across Sites.
EKB-27385: Cisco AutoAttendant Call Handler - Pilot number dropdown does not populate at site with 400K+ number instances. Resolves an issue where the Pilot/Number dropdown did not load on Cisco Auto Attendant and Clusterwide Call Park pages in environments with 400,000+ Directory Numbers by improving how large number sets are loaded.
EKB-27366: MultiVendorSubscriber: Delete All Services fails if MsolUser/CsonlineUsers where Username does not equal UserPrincipleName. Resolves an issue where the MultiVendorSubscriber “Delete All Services” operation failed for Microsoft users (MsolUser/CsOnlineUser) when the Username did not match the UserPrincipalName by correctly handling identifier mismatches so all services are deleted successfully.
EKB-27348: Number audit tool enters wrong description for audio codes numbers. Resolves an issue where the Number Audit tool populated an incorrect description for AudioCodes numbers by correctly identifying AudioCodes-associated numbers and applying the appropriate, accurate description during audit processing.
EKB-27343: Cisco Auto Attendant: Modify Call Handler fails “Unable to find Schedule with DisplayName”. Resolves an issue where updating a Cisco Auto Attendant Call Handler failed when multiple Connection Locations shared the same Display Name, by correcting the lookup logic to reliably resolve and apply the correct Connection Location during the update.
EKB-27296: Webex - Make user fields read only on DirSynced Hub in QAS and relation/SparkUser. Resolves an issue where user fields could be edited on DirSynced Webex hubs, causing errors. The fix makes these fields read-only to align with Webex API behavior.
EKB-27223: Cisco Lines, link to phone has the wrong label on header. Resolves an issue where the page header incorrectly displayed “Auto Reg Phone” when navigating to Phones from the Line Usage form by correcting the header label to “Cisco Phones”.
EKB-27210: Webex: Import Workspace fails [list Place] Unable to render model template. Resolves an issue where importing Webex Workspaces failed with a “Unable to render model template” error by fixing the list Place model template so Workspace imports complete successfully.
EKB-27193: Site Build: Phone security profile not being set as default phone type profile. Resolves an issue where Site Build did not automatically select the default Phone Security Profile by ensuring the configured default profile is correctly applied when creating a new Site.
EKB-27170: (N to 1) DN to E164 Associations with Update: Dial Plan Model Selection Choices dropdown not available. Fixed missing Dial Plan Model Selection dropdown choices in the (N to 1) DN to E164 Associations with Update form.
EKB-27152: Update subscriber phone fails if the associated user has been imported from multiple CUCMs. Resolves an issue where updating a subscriber phone failed when the associated user was imported from multiple CUCMs by handling multiple returned Entitlement Profiles and consistently using the first profile in the list.
EKB-27141: Webex - block Webex DisplayName updates when a Webex user is on a DirSynced Webex Control Hub. Resolves an issue where displayName updates were attempted for Webex users on DirSynced Control Hubs, causing API errors. The fix prevents updates and ensures the existing value is retained during requests.
EKB-26953: Adding Webex user assigns a random Manager ID value. Resolves an issue where adding a Webex user via relation/SparkUser incorrectly assigned a random Manager value by ensuring the Manager field is only set when explicitly provided.
EKB-26924: Update GS_AGW_AddPort_PWF workflow to include device/cucm/Line update step. Resolves an issue where a required line setting was not applied during analogue gateway provisioning. The fix adds and refines a follow-up update step to ensure the setting is applied correctly.
EKB-26717: Default FDP for msteamsonline/CsOnlineUser missing Voicemail settings. Resolves an issue where Voicemail settings were missing from the default Field Display Policy for Microsoft msteamsonline/CsOnlineUser by exposing the Voicemail fields so they are visible and configurable by default.
EKB-26649: MultiVendorSubscriber: Add Jabber phone fails when user has a 3rd-party Sip device associated. Resolves an issue where adding a Cisco Jabber phone failed for a MultiVendorSubscriber who already had an associated 3rd-party SIP device, ensuring Jabber phones can be added successfully in mixed-device scenarios.
EKB-26620: Cisco Auto Attendant: Call handler added at customer level cannot select a call handler at site for caller input. Resolves an issue where a Customer-level Cisco Unity Call Handler could not select Site-level Call Handlers for Caller Input.
EKB-25559: Cannot add multiple lines on Webex VG devices (relation/WebexDevice). Resolves an issue where multiple lines were not visible or manageable on Webex VG devices in relation/WebexDevice, by enabling device configuration and line management for supported VG models.
EKB-23113: Webex number provisioning - refresh device/spark/Number local cache when provisioning Webex services. Resolves an issue where Webex number data could become out of sync due to a missing refresh. The fix adds a refresh step to ensure number data is updated correctly.
EKB-23111: Number inventory - usage is no longer showing for Webex users. Resolves an issue where Webex number usage was not displayed due to schema mismatches. The fix aligns schema handling to correctly display usage in Number Inventory.
EKB-28308: Adding SIP trunk without the HcsSipTrunkRelCFT set in the menu fails as class, product, and protocol are not set. Updated SIP trunk add workflow to enforce supported class, product, and protocol defaults so HcsSipTrunkREL adds no longer fail schema validation when menu CFT defaults are missing.
Collector (Arbitrator)#
EKB-28386: CUBE CDR integration issue. Resolves an issue where a recursive file check caused the same CDR file to be repeatedly processed, leading to excessive disk space and CPU usage.
EKB-28329: Cisco Expressway API probe error - not returning data. Resolves an issue where the Cisco Expressway API probe failed to return data due to an exception in the PHP script.
EKB-28211: Need to validate Teams data collection. Resolves an issue where high call record volume could trigger a memory segmentation fault, delaying call record processing and causing records to carry over into subsequent processing windows.
EKB-27619: MSTeams data collection halts - Arbitrator v25.3. Resolves an issue where large volumes of calls could cause individual call record detail fetching to abort before all API values were returned.
EKB-27575: Consolidate and harmonize the System menu. System-related admin menu commands in Arbitrator were reorganized and grouped under a single “System” menu to make them easier to find and use.
EKB-27434: VOSS Insights license mismatch. Resolves an issue where VOSS Insights displayed an incorrect “Days Remaining” license value by updating the calculation to use the official contract expiration date from the license file, ensuring the remaining days accurately reflect the true contract term.
EKB-27313: AudioCodes SNMP probes failing on multiple devices - PHP Fatal Error. Resolves an issue where AudioCodes SNMP probes were failing across multiple devices due to a PHP fatal error by updating the probe logic to execute reliably and collect SNMP data successfully.
EKB-27140: Email alerts fail to send. Resolves an issue where post-connection email communication failures caused a resource leak that eventually prevented all email alerts from being sent by ensuring email resources are properly released so subsequent send attempts continue to succeed.
EKB-26997: Remove deprecated features from Arbitrator GUI. Old configuration screens for deprecated features have been removed from the Arbitrator interface, leaving only the current and supported configuration options.
EKB-25552: Syslog forwarding consolidation and standardization. Legacy Arbitrator syslog forwarding has been deprecated, and all related UI elements and references have been removed. In its place, syslog-ng forwarding is now the explicitly supported and standard method, with consistent forwarding support exposed through the Admin menu for Dashboard and DS9.
Legacy Dashboard Portal#
EKB-28089: VOSS Insights page not opening, site is down. Resolves an issue where the system could fail to recover when the disk became full by increasing the recovery actions taken during disk-full conditions.
EKB-27018: Remote Backup setup for VOSS Insights servers. Microsoft domain names may now be provided for the username on archive remote storage.
EKB-26857: Help to verify sendmail setup/functionality. Emails sent by the system now correctly follow the configured Sendmail settings instead of ignoring them.
EKB-26604: Scheduled monthly CDR reports from dashboard are not being completed. Resolves an issue where manually scheduled Dashboard reports (including monthly CDR reports) did not complete due to date-type handling by updating the manual reporter scheduler to ignore the date type and allow the report to run as requested.
Netflow Collector#
EKB-28176: Netflow 9 from Cisco device not being ingested. Resolves an issue where slow process initialization was interpreted as ready-to-run, which would then fail to perform requested commands. This fix adds greater initialization verification and command execution validation and error handling.
EKB-27899: DS9 - add recovery mechanism when hostname is not set during fresh DS9 deployment. Resolves an issue where the DS9 “Reset All Services” menu option could not recover the system when the hostname was not correctly configured during a fresh DS9 deployment.