Cloud Secure Edge Docs
Client Changelog
February 19th 2026
v.4.0.0
Desktop app re-brand: App executable names, package names, service names, and directory names are now SonicWall Cloud Secure Edge branded.
Download:
January 16th 2026
v3.28.1
- Download:
November 11th 2025
v3.28.0
- Download:
August 21st 2025
v3.27.2
- Download:
July 15th 2025
v3.27.1
fix CSE app couldn’t identify devices via Serial Number.
Download:
May 14th 2025
v3.26.0
- Download:
April 29th 2025
v3.25.1
hotfix With ITP enabled, Service Tunnel was delaying connecting and disconnecting to configured domains.
New Enable Auto Login toggle on the app; when enabled, this feature automatically re-authenticates user sessions on app start up; Available on macOS and Windows devices.
Download:
April 9th 2025
v3.25.0
App start-up automatically initiates login flow once session expires
fix After re-authenticating in the CSE app, infra services are sometimes binding to random ports even when the specified listening port is available.
Download:
March 12th 2025
v3.24.0
New Enable Continuous Ping toggle to keeps sessions alive and prevent connections from dropping.
New Enable Service Tunnel over TCP toggle for end users who require internet access temporarily on restrictive networks; this toggle is for Private Edge traffic only.
Download:
February 27th 2025
v3.23.1
fix Certificate install was failing on macOS versions 15+ in new orgs.
fix Admins were unable to connect to Captive Portal or pay-walled networks when using ITP.
fix Admins were receiving an error when connecting to Service Tunnels designated as Trusted Networks.
fix Admins were experiencing delayed updates when toggling ITP on or off on macOS versions of the desktop app; ITP updates are now reflected within 15 minutes.
Download:
February 12th 2025
v3.23.0
- Download:
December 6th 2024
v3.22.2
new Fedora 40 support
Download:
November 7th 2024
v3.22.1
fix In some cases, end users running desktop app versions 3.21+ were unable to log in while connected to non-CSE VPNs.
Download:
October 9th 2024
v3.22.0
Support for macOS Sequoia.
Download:
August 21st 2024
v3.21.2
hotfix Internet connectivity issues encountered when devices were waking from sleep.
Download:
August 14th 2024
v3.21.0
fix End users were being prompted twice for credentials during login.
Download:
July 10th 2024
v3.20.0
fix Serial number casing changed, which made the app unable to recognize registered devices.
fix The app was facing technical issues calculating Trust Score directly after a device awakened from sleep.
Download:
May 22nd 2024
v3.18.1
hotfix Search Domains: Domain names and FQDNs are now case insensitive.
Download:
May 8th 2024
v3.18.0
Trusted Networks support.
RDP file properties support.
Download:
April 10th 2024
v3.17.0
- Download:
March 18th 2024
v3.16.0
Support for URL filtering
new Internet access issue after the app showed the following error "Internet Threat Protection could not be configured; port 53 in use".
Previous versions of the app (3.8.2 and older) were able to handle registrations for machines that did not have a serial number by creating a serial number. This functionality was restored.
Download:
February 15th 2024
v3.15.0
Support for Oracle Linux in OS Version Trust Factor.
Download:
January 17th 2024
v3.14.0
new Auto re-enablement of ITP after one hour of being disabled.
new Device-side DNS resolution now defaults to resolving over TLS, which is encrypted.
Download:
December 13th 2023
- new Banyan’s desktop app now updates (instead of regenerates) the kube config file when end users connect to a Kubernetes service, retaining previous configuration used by kubectl.
v3.13.0
- Download:
November 15th 2023
v3.12.3
fix The admin-server did not have access to the http proxy on the user context for the desktop app. The app now supports HTTP proxy setting consistently across app components (including the admin server).
Download:
November 8th 2023
v3.12.2
fix Desktop app no longer enforces automatic retry for sending features and TrustScoring.
Download:
October 11th 2023
v3.12.1
fix Refreshed TrustScoring on reawakening devices
Download:
September 20th 2023
v3.12.0
new Trust Level updates when users switch orgs via the desktop app.
new ITP and TrustScoring now function via the Admin Service alone (independently of the desktop app); therefore, the desktop doesn't need to be running in order for these functionalities to work.
new Chrome Version Trust Factor in early preview.
fix End users were receiving a 'Could not fetch devices' error when switching networks on the desktop app.
Download:
August 10th 2023
v3.11.0
new Session expiration timer in app.
Download:
July 12th 2023
v3.10.0
fix Enabling ITP was misrouting DNS in Ubuntu.
Download:
June 14 2023
v3.9.0
fix The Banyan client will use the host DNS server for any DNS requests until captive portal authentication is complete and internet access is available.
Download:
May 25th 2023
v3.8.5
fix Launching the desktop app (from the Windows start menu) when the app was already running was causing the tunnel to disconnect.
Download:
May 10th 2023
v3.8.4
new OS version and Bios serial number update on app start up.
Download:
April 12th 2023
v3.8.3
fix Banyan app has migrated commands to PowerShell; the app no longer uses
wmiccommands.fix When users connected to Service Tunnel on Windows devices, the IP address without mask defaulted to /8.
Download:
March 23 2023
v3.8.2
Performance improvements for cases in which there are large numbers of public domains in a Service Tunnel.
Download:
March 8th 2023
v3.8.1
new Registry Key Trust Factor for Windows devices.
new Admin-enabled Autorun setting in the Command Center.
new Internet Threat Protection (ITP) policies and functionality.
Download:
February 8th 2023
v3.7.1
fix Preinstalled Firefox Extension (without the core browser) was failing device registration
fix MDM parameters were not working as expected for Linux devices
fix Registered 10ZiG devices were showing up as a single device in the Command Center
Download:
January 11th 2023
v3.7.0
new Property List Check Trust Factor
Download:
December 21st 2022
v3.6.1
the WireGuard Service now only listens on Port 53 (default port) when Service Tunnel for public domains is enabled.
Download:
December 13th 2022
v3.6.0
new Internationalization of Banyan Trust Factors.
new Banyan App Version and File Check Trust Factors.
Download:
November 9th 2022
v3.5.0
new Internationalization of registration on Windows devices.
Enhanced WireGuard performance on Windows devices.
fix Firewall Trust Level Factor now supports Group Policy settings for Windows devices.
Download:
October 13th 2022
v3.4.0
new Trust Levels are replacing numerical Trust Scores in Banyan's new Granular Trust Scoring model.
Lengthened Service Tunnel startup probe timeout.
new Help button that redirects end users to an internal ticketing system for any assistance.
fix WireGuard interface now sets the correct MTU size of 1380, allowing Service Tunnel traffic to pass through faster.
Download:
September 14th 2022
v3.3.0
new App logs can be sent directly to Banyan Support from the Health Check page.
new App session expiry icon.
new Service Tunnel quick connect option from the Banyan app icon in the menu bar.
new macOS ARM build (in Early Preview).
Download:
July 28th 2022
v3.2.0
fix Auto-Update TrustScore factor was shown as disabled when using JAMF config profile.
fix Device registration failed for Mac users when the device hostname was missing.
Enhanced Service Tunnel validation on connecting; an error now appears if the validation fails.
new Run Diagnostic Tool now collects Service Tunnel related logs and data.
The support link has been removed from the desktop app.
Download:
June 30th 2022
v3.1.0
Enhanced support for Zero-Touch Installation
Download:
June 23rd 2022
v3.0.2
fix Device Trust Verification issues on Linux devices have been resolved.
Download:
June 16th 2022
v3.0.1 (Windows)
fix Service Tunnel issues on Windows devices have been resolved.
Download:
June 2nd 2022
v3.0.0
new Admin Service: The desktop app now has an administrative component, for any actions within the app that require admin privileges.
Enhanced logging, with admin logs.
new Home tab: A single location for accessing Service Tunnels, Recently Accessed Services, and Active Connections.
new Enhanced Search: End users can easily search their services catalog without having to re-open the desktop app.
new Service Tunnel interface with an Autorun option, so that Service Tunnel connects when an end user logs into the desktop app.
Download:
February 24th, 2022
v2.6.0
Full support for Fedora (34 and later) in Banyan's desktop app.
Download:
January 27th, 2022
v2.5.1
new Expiration notification when a user’s login token is 2 hours away from expiring. The expiration notification time is configurable.
Download:
December 9th, 2021
v2.5.0
new Run Diagnostic Tool.
new Support for specifying users in ZeroTouch registration.
Enhanced app logs.
new Keychain explainer prompt to notify macOS users that Banyan needs access to their keychains.
Download:
October 14th 2021
v2.4.0
new The Banyan Service Tunnel feature is now available in Early Preview.
Download:
September 8th 2021
v2.3.0
User defined Service Bundles
Added filters for service types within the service catalog.
Download:
July 2nd 2021
v2.2.1
fix CMD+W shortcut was not usable with other applications when Banyan App running.
Download:
July 1st 2021
v2.2.0
Simplified Desktop App Registration
Viewing Hosted Web Services will require an identity provider login
Additional keyboard shortcuts
Performance and stability improvements
Download:
May 26th 2021
v2.1.0
Integrated Banyan CLI to run in-terminal commands to connect to Banyan services without interacting with the Banyan Desktop App. *(This feature is in early preview.
Devices enrolled via Zero Touch installation support Banyan's Passwordless authentication. (This feature is in early preview and must be explicitly enabled for your organization)
(Bug fix) Devices enrolled via Zero Touch installation were unable to favorite services or set services to autorun.
Download:
May 19th 2021
v2.0.1
fix Autorun did not respect the configured port and instead chose a random port.
fix The status of a service did not update properly until the app was refreshed.
fix Certificate selection pop-up was not suppressed on Windows.
Download:
April 28th 2021
v2.0.0
Desktop app re-design:
- Enlarged app to display more details throughout. You can manually resize the frame as well as expand it to fullscreen.
- Services have been organized into sections: My Services and Service Catalog.
- In the My Services section, you can view Favorites (commonly accessed services) and Autorun (services that start when the Desktop App launches) for quick access.
- The Service Bundles section includes sets of services configured by Banyan Admins for similar services or projects. They help browsing and for bulk connecting to several services simultaneously.
- The Services Catalog organizes all of your services according to their type (Hosted Websites, Infrastructure, SaaS Applications).
- Search for specific services, sort columns alphanumerically, and refresh the lists for any latest changes
- Previously, you had to click into a service in order to launch it. Now, you can launch and connect to a service from the service list view.
- The Settings have been organized into sections according to Desktop App settings and preference, then quick links to helpful resources (documentation, app log, and privacy policy).
Quicker refresh of Trust Score when checking device posture.
(Bug fix) If an organization had multiple devices having serial numbers as "Default string" (literal value) rather than an actual serial number, then the devices appeared in the Command Center as a single device with multiple users.
(Bug fix) The one-time passcode exclusion feature was not working for policies configured for individual roles and only worked for policies configured with the
ANYroles option.Download:
April 8th 2021
v1.14.1
(Bug fix) Fixes related to wildcard TCP services.
Download:
April 7th 2021
v1.14.0
When tunneling to a collection of TCP services with the Domains to Proxy feature, the
banyanproxydid not properly start.Download:
March 15th 2021
v1.13.1
Service descriptions now support clickable links.
Download:
March 4th 2021
v1.13.0
Device certificate auto-renewal (Not supported for devices registered via Zero Touch Deployment).
(Bug Fix) Token size limit reached due to having a large group claims.
Download:
February 12th 2021
v1.12.2
(Bug fix) Trust Factor calculations were incorrect for Firewall & AutoUpdate on Linux-RPM.
(Bug fix) Suppress error messages when invalid requests are made for port 8118.
(Bug fix) Kubernetes services configured without a specific port did not connect because the Desktop App used a random port (as expected) while
banyanproxyexpected port 8080.Download:
February 1st 2021
v1.12.1
Leverages full application path instead of symlink.
(Bug fix) Token size limit reached due to having a large group claims.
(Bug fix) The RDP Gateway mode did not work in Banyan DesktopApp for Windows.
Download:
January 27th 2021
v1.12.0
Fixes for macOS Big Sur M1 on ARM64 and X64 devices.
Deprecate
banyanproxymode options (HTTP_CONNECTandHTTP_CONNECT_BASTION).In-app indicator for length of time remaining in session.
Tray icon indicator for when session is about to expire (yellow at < 2hrs, red after expiry).
Display prompt when session expires (configurable in Desktop App settings).
New utility functions (
--unregisterand--remove-staging) for command line when distributing the Banyan Desktop App using a device manager.Banyanproxy, when running in
HTTP_CONNECT_DAISY_CHAINmode, can be configured to only proxy certainIncludeDomainsusing MTLS. All other domains will be passed through transparently.(Bug fix)
banyanproxydid not initiate auth flows for some TCP services when the certificate expired.Download:
January 15th 2021
v1.11.1
(Bug fix) Fixed issue involving Zero Touch installation and excessive token length.
Download:
January 6th 2021
v1.11.0
(updated Jan-14-2021)
Added capability to allow Zero Touch Desktop App installation and Banyan organization registration via Device Managers (such as Intune).
View services with login token rather than the reporting token.
(Bug fix) Link to Banyan's Privacy Policy was incorrect.
(Bug fix)
banyanproxydid not inform the end user that the configured local port was already in use.(Bug fix) mdm-config.json was deleted when Desktop App was upgraded.
Download:
December 9th 2020
v1.10.1
(Bug fix) If a user is a member of many groups, the resulting login token became excessively long which caused logins to fail.
Download:
December 2nd 2020
v1.10.0
Added .rpm version of the Desktop App to support Fedora-based Linux distros. (The .rpm version of the Desktop App does not currently support Trust Scoring for up-to-date OS or Org Preferred Apps.)
SSH Config is now saved to its own file (~/.ssh/banyan.config).
Display a notification if the device loses Internet connection.
Display Device Ownership type.
Improved support for Firefox.
Improved logging.
Windows Firewall Trust Factor determination only considers public and private firewall settings, and ignores the domain firewall setting.
Collect Windows bios serial number if baseboard is blank or "default string"
SSHCert format changed to SHA-256.
Enhanced experience for login certificate renewal.
Desktop App now uses an include command to incorporate SSH configs written to
~/.ssh/banyan.config.Download:
October 28th 2020
v1.9.0
One-click access for Kubernetes Services.
Enhanced support RDP Servers.
Added Trust Factors (Firewall and Disk Encryption) for Linux.
(Bug fix) Desktop App for Linux was not properly collecting and reporting preferred apps running on the device.
Download:
October 15th 2020
v1.8.2
October 1st 2020
v1.8.0
Administrators can customize TrustScore remediation instructions and links displayed to end users in the Desktop App. These instructions can be customized for each TrustScore factor and are specific to the device's operating system.
Initial release of Device Trust Verification capability to support native "sandboxed" apps. "Sandboxed" apps are iOS/Android/MacOS/Windows apps that use WebViews for authentication that are unable to access the Banyan Device Cert placed in the device cert store or keychain. (This feature is in early preview and must be explicitly enabled for your organization.)
Improved implementation and management of connectivity to SSH services.
Download:
August 26th 2020
v1.7.1
Complete UI refresh.
Preferred Apps for Device Trust Scoring now supports regex pattern matching for apps having process names that are variable or change regularly.
Improved feature collection.
Download:
July 29th 2020
v1.6.0
Added a
HTTP_CONNECT_DAISY_CHAINmode forbanyanproxyto forward the client'sHTTP CONNECTrequest to the given proxy host and port. (This feature requires Banyan Netagent v1.27.0+)Administrators can preconfigure all the parameters the end user needs to connect from the Banyan Desktop App to TCP Services.
If allowed by Administrators, end users can override preconfigured parameters when connecting to TCP Services.
Added configuration to use TrustCert and/or SSHCert.
Added configuration to not write to SSH Config.
Download:
July 1st 2020
v1.5.2
Added configuration options for deploying desktop app via Device Managers.
For devices managed by Workspace ONE UEM, device TrustScore calculation accounts for Workspace ONE UEM factors.
Download:
June 3rd 2020
v1.5.1
Added configuration options when deploying desktop app via Device Managers.
Device Manager configurations are no longer contained in
config.json; instead these should be in amdm-config.jsonfile in the Desktop App installation directory. If you configured Device Manager settings with Banyan Desktop App v.1.5.0, you must move the existing configurations fromconfig.jsontomdm-config.json.Download:
May 6th 2020
v1.5.0
Added features to enable fleet deployments using Device Managers, including:
- Ability to pre-populate invite code
- Better integration with Workspace ONE UEM
Simplified authentication flows needed for an end user to view their Services and TrustScore
Added feature to automatically suppress the Device Certificate pop-up in Windows (Chrome, IE) and MacOS (Chrome, Safari) browsers
Better support for developers workflows
banyanproxynow has an HTTP Connect Mode for TCP Services- Click-button connectivity for Multi-domain Services
(Bug fix) Devices where SerialNumber is "0" (such as VirtualBox VMs) are now treated the same as devices that do not have a serial number.
Download:
April 8th 2020
v1.4.1
Released Banyan Desktop App for Linux (Ubuntu-only) with the following known feature limitations:
- Device must have Chrome installed, and also set as its default browser.
- User must use Chrome when registering their device and connecting to services.
- User must have administrative privileges on their Linux device in order to install the Banyan Linux Desktop App.
- Device must have
certutilinstalled. - Multiple organizations are not supported. Users must de-register their device in order to register with a separate organization.
- Firewall data is not collected.
- banyanproxy is not placed in $PATH.
(Bug fix) Implemented fixes to TrustScore calculations when overridden.
(Bug fix) Fixed behavior related to Desktop App starting on bootup.
(Bug fix) Implemented fixes to Root & Intermediate Cert install/uninstall.
Download:
March 25th 2020
v1.4.0
Added option to automatically launch Desktop App on device startup.
Display a list of other devices the user has registered with Banyan.
Simplified connection workflow to generic TCP services.
Prompt to ask for Device Ownership on registration.
Allow installation of Desktop App when a device has no SerialNumber value.
Added support for organizations with Intermediate CA certificates (existing capability supported Root CA certificates).
Download:
