Skip to main content

Snow License Manager 26

Here you can find the release notes for Snow License Manager 26. You can find the old release notes on the Flexera Community.

26.1.0 pre-announcement

Release date: 2026-03-18

Enhancements

Enterprise: Oracle
Support for Oracle Database 23c
The following enhancements were intruduced:

  • Recognition for Oracle Database version 23c, including the visibility of the new "Free" edition (starting from Oracle DB version 23c).
  • Extended the compliance calculation logic for versions 21 and 23, and for the new Free edition.
  • Extended EoL Support data.

Licenses
Enable downgrade rights by default for manually created licenses

  • When you add licenses manually in Snow License Manager, without relying on SKUs, downgrade rights are now enabled by default on the Add license page. This aligns with how most major software vendors, such as Microsoft, Oracle, and IBM, typically grant downgrade rights, and reduces the risk of under‑stated license coverage.
    You can override the default behavior at any time by manually disabling the downgrade rights when you add or edit a license, whether you select the application by name or by SKU.

Enable license upgrade rights by default when maintenance is added to the license

  • When you add active maintenance to a license in Snow License Manager, upgrade rights are now enabled by default. This applies to both when you create a new license with maintenance and when you add a new maintenance period to an existing license. This enhancement aligns with how active maintenance is typically used in software licensing.
    You can override the default behavior at any time by manually disabling the upgrade rights when a particular license does not grant upgrade entitlements.

MongoDB
MongoDB upgraded to latest stable version 8 release

  • MongoDB has been updated to version 8.0.19.

Reports
Dynamic date ranges in Applications per Computer and Application Installation History Reports

  • In the Applications per computer and Application installation history reports, you can now use the First discovered and Last discovered fields as report criteria with relative date ranges, such as “last week”, “last month”, or “last quarter”.
    This means that you can:
    • Create a report once that always runs over a rolling time window, without manually changing date filters each time.
    • Schedule recurring reports so that stakeholders, including people who don’t have access to Snow License Manager, automatically receive up-to-date information about which software has been added or removed during the chosen period.
    • Save and export reports that use these relative date periods, making it easier to share consistent views of recent installation activity.

Use report names as file names when exporting

  • Exported reports now have clear, descriptive file names instead of generic names such as StockReport.xlsx. When you export a report, the downloaded file:
    • uses the report’s name as its base file name
    • appends a local timestamp to the name to indicate when the export occurred.

Corrections

Agreements

  • On the Custom agreement types page, the Number of agreements column now refreshes automatically whenever you create, archive, or delete a custom agreement. You no longer need to manually clear the temporary cache to update the count.

Applications, Computers, Datacenters, Objects

  • The browser now sends sensitive cookies over secure HTTPS connections, only.

Cloud: Adobe Creative Cloud

  • When loading Adobe Creative Cloud data, you should no longer experience delays or timeout errors. (IOK-1910908, IOK-1902737)

  • The Preview button on the Link users tab now works as expected. (IOK-1924352)

  • Correction to overassigned license numbers to show the correct overassignment. (IOK-1884656)

Cloud: Microsoft 365

  • The permission OFFICE365_EDITCOSTS now gives the correct user access on the Cost page for Microsoft 365. (IOK-1907961)

  • The Microsoft 365 pages for overview and linked users now appear as expected(IOK-1925744).

Custom objects

  • The security is improved for custom Objects by safely handling and encoding user‑provided values in object parameters and mandatory fields, preventing stored cross‑site scripting (XSS) attacks.

Data Update Job

  • Column sizes for custom registry data have been aligned between Inventory and tblComputerRegistry in Snow License Manager. This prevents Data Update Job failures caused by registry values that are longer than the previous limits in Snow License Manager. (IOK-1859279)

  • In some environments, the Data Update Job (DUJ) could stop on step inv.UpdatetblComputer_With64BitSoftware with a primary key violation on #updatedComputerWith64BitSoftware when duplicate computer records were returned from the Inventory.
    The DUJ logic has been improved so that these duplicate records are handled correctly, preventing this primary key error and allowing the DUJ to complete successfully (IOK-1887654).

Datacenters

  • Datacenters and clusters now require unique names. When you try to create a datacenter/cluster (DCC) with a name that already exists, the system prevents the duplicate and keeps the existing record unchanged. This helps avoid confusion and accidental duplication when managing DCCs.

Enterprise: Oracle

  • Resolved an issue where several SVG icons were not rendering correctly in the UI.

  • A data consistency issue that caused empty Oracle Fusion Middleware component names to appear in the Oracle WebLogic Installations view has been fixed.

Exporting to CSV from application

  • To address potential CSV Injection vulnerability related to multi-line fields in exports, the following now applies:
    • Multi-line text fields are now safely formatted when exported to CSV.
    • Line breaks in multi-line values are exported as a single line with spaces instead of multiple lines.
    • Values that could be interpreted as formulas are exported in a way that prevents formula execution. This means that opening the CSV file in Excel no longer triggers script or macro warnings related to this issue.

Generic SaaS Runtime Service

  • The security of the Generic SaaS Runtime Service is improved by removing credentials in clear text from the logs. This reduces the risk of sensitive information being exposed when accessing or sharing log files.

License assignment

  • On the Assignment tab of a license, in the Organization column, you now see the friendly name of the organization as configured in Snow Management and Configuration Center. (IOK-1930528)

Quarantine Management

  • When you create or edit a rule for Quarantine management, and you select the criteria option “has any value” or “has no value”, and then save the rule, the option is now correctly preserved when you reopen the rule for editing. (IOK-1889718)

Report Exporter

  • A new System Core setting is available in Snow Management and Configuration Center: SMTP_SECURE_SOCKET_OPTIONS. It can be used for Basic Authentication and SMTP server configurations that work on port 25, only. Available values are: None, Auto, SslOnConnect, StartTls, and StartTlsWhenAvailable. (IOK-1962243, IOK-1961209)

Reports

  • When the language is set to German, scheduled reports that are filtered by status “In Quarantäne” now correctly include all quarantined computers when exported or delivered according to schedule. (IOK-1857004)

  • The input validation and output encoding are improved for the description fields in Reports and Scheduled reports. The user‑provided content is now validated and safely encoded before it is shown which prevents harmful scripts from running in the browser, and strengthens the overall security.

  • The performance has been improved for the Files per computer report when filtering on Application manufacturer. The report now completes significantly faster, reducing the risk of timeouts and failed scheduled exports. (IOK-1397018)

SLM

  • In some environments, when using deny‑listed applications, the Applications details page could time out. The underlying query has now been optimized so that deny‑listed applications are resolved more efficiently while still respecting organizational scoping of exclusions.
    This improvement significantly reduces the query execution time in environments with many deny‑listed applications, improving the responsiveness of the Applications details page. (IOK-1376982)

Services

  • The security of the Report Exporter Service is improved by removing credentials in clear text from the memory.

  • To reduce the consumption of memory (RAM) in the Maintenance Service, the jobs of deleting Datacenters and Objects from the database are now executed directly via SQL queries. (IOK-1884263).

  • The NATS Server component has been upgraded from version 2.9.17 to 2.10.27. This upgrade brings important stability improvements, and resolves the critical JetStream authorization vulnerability CVE‑2025‑30215 present in earlier versions.

  • The security of the Notification Delivery Service is improved by removing credentials in clear text from the service logs. This reduces the risk of sensitive information being exposed through log files, and aligns the service with secure logging practices.

Snow Management and Configuration Center

  • When you edit currencies in Snow Management and Configuration Center, the action buttons OK and Cancel are now fully visible. (IOK-1881505)

Users

  • On the Edit user page, the validation of the Mobile phone number has been improved. When an invalid number is entered, Snow License Manager now shows the message “Invalid mobile phone number”.

  • To prevent Cross Site Scripting (XSS), the value of the user’s Full name in the user interface now renders as text only.

Web Configurator

  • On startup, the Web Configurator now verifies the digital signature of its executable before loading. This integrity check helps prevent tampered binaries from being loaded, strengthening the protection against local attacks and unauthorized modifications.

  • In the Web Configurator, you no longer see an error message when you try to select a Type on the Configuration tab of the Import folder. (IOK-1937130)

Flexera does not own the third party trademarks, software, products, or tools (collectively, the "Third Party Products") referenced herein. Third Party Product updates, including user interface updates, may not be reflected in this content.