We are pleased to announce that Sophos Firewall OS v19.5 is now released and generally available. This update to Sophos Firewall brings a number of exciting enhancements and top requested features.
Download the full What’s New guide for a complete overview of all the great new features and enhancements in v19.5.
As usual, Sophos Firewall OS v19.5 is a free upgrade for all licensed Sophos Firewall customers and should be applied to all supported firewall devices as soon as possible, as it not only contains great features and performance enhancements, but also important security fixes.
This firmware release will follow our standard update process. You can manually download SFOS v19.5 from the Licensing Portal and update anytime. Otherwise, it will be rolled out to all connected devices over the coming weeks. A notification will appear on your local device or Sophos Central management console when the update is available, allowing you to schedule the update at your convenience.
Sophos Firewall OS v19.5 is a fully supported upgrade from any v18.5 firmware as well as v19, including the recent v19 MR1 build 365 release, and the v19.5 EAP build. Please refer to the Upgrade Information tab in the release notes for more details.
Full product documentation is available online and within the product.
Update training (from v19 to v19.5) is available on the Sophos Training Portal.
Will this eventually allow with doing away with STAS and allow identity to be fully cloud managed without the need for Azure ADDS? to automatically identify users (based on Azure AD groups) signed into devices with AzureAD accounts and apply web filtering policies to them?
You find all fixes in the releases notes: docs.sophos.com/.../sf_195_rn.html
In my message I specifically said "If I go to the release notes [that is, the link you provided], there is also not a mention of neither security nor fixes."
What are the important security fixes?
That's correct. if an organization fully leverages the Azure AD for managing identities and access (IAM), legacy solutions like LDAP/RADIUS/NPS are not required.
Some research insights: Data show a majority of enterprise still relies on an on-premise solution (like LDAP /Active Directory) due to legacy applications dependencies and deeply integrated workflows. We see this trend will continue for a couple of years till they migrate all the applications to modern design or workaround using services like Azure App proxy. Considering this we are eventually planning (in our roadmap) to add more features and functions that can integrate with serverless authentication technologies
Sophos release notes Facundo, is this what you were looking for?