July 26, 2025
Feature
Federal Risk and Authorization Management Program (FedRAMP) support for Cyber Resiliency features for Endpoints and Microsoft 365
With this release, you can now ensure data security for your Endpoints and Microsoft 365 data deployed in the GovCloud.
With this GovCloud update, we bring you the following features:
Posture and Observability: Includes the following features:
Access Events: Monitor who accesses your data, including admins and APIs. This is supported for Endpoints and Microsoft 365. For more information, see Access Events.
Rollback Actions: Restore deleted backups from a secure cache for up to 7 days. This is supported for Endpoints and Microsoft 365. For more information, see Rollback Actions.
Security Center: Get a real-time security posture risk assessment and in-depth insights into the status and health of your backup environment. This is supported for Endpoints and Microsoft 365. For more information, see Security Center.
Data Anomalies: Detect unusual file creation, modification, and deletion actions. This is supported for Endpoints, OneDrive, and SharePoint. For more information, see Data Anomalies.
Ransomware Recovery: Includes the following features:
Quarantine Bay: Isolate infected snapshots to prevent the spread of infection. This is supported for Endpoints, OneDrive, and SharePoint. For more information, see Quarantine Bay.
Restore Scan: Scan the data for viruses and malware using file hashes during a data restore activity before restoring data. This is supported for Endpoints. For more information, see Restore Scan.
Curated Snapshots: Create clean snapshots for recovery. This is supported for Endpoints, OneDrive, and SharePoint. For more information, see Curated Snapshots.
Threat Intelligence and IOC Library integration: Druva-curated Threat Intelligence (Druva-published IOC Sets) that are used across all Cyber Resiliency features for malware and ransomware scans. For more information, see IOC Library and Threat Intelligence.
Customer action required: None.
June 28, 2025
Feature
Securing failsafe login experience
Starting June 28, 2025, Druva has updated the sign-in experience for accounts with Single Sign-On (SSO) configured. Previously, Cloud Administrators could use the failsafe login option (username and password) as an alternative to signing in via their SSO provider. As part of this change, the login experience is now streamlined to use SSO exclusively. If you require access via the failsafe method, please contact Druva support for assistance.
Legal Hold Admins can continue to access their accounts using the Sign in as a Legal Hold Admin link available on the login page.
This update helps customers ensure that all administrators consistently use SSO for authentication, while also protecting the environment by preventing potential misuse of the failsafe password-based login by unauthorized users.
Introducing an updated integration center with Webhooks
We're excited to announce our refreshed integration center.
The new integration center brings together:
Out of the box integrations that Druva supports
A new home for API credentials
A brand new mechanism to integrate external services via webhooks
This is our attempt to bring all external integrations under a single roof. Earlier, API credentials lived under manage administrators section. But we think that each mechanism to connect an external service with our platform should stay in one place.
We're also excited to introduce webhooks as a new way to connect an external service with our platform. Now, you can specify a webhook URL, and we will post events to that URL in real time. To learn more about webhooks, see Use webhooks to integrate third party services with Druva.
March 22, 2025
Feature
Administrator Management with AD/LDAP
The Administrator management using AD/LDAP is now generally available (GA).
With this functionality, the integration with AD/LDAP Connectors and AD Accounts is centralized to manage Druva administrators efficiently by the DCP administrators.
The Administrator management feature uses your existing Active Directory (AD) or Lightweight Directory Access Protocol (LDAP) integration and simplifies managing Druva administrators within the Druva Cloud Platform (DCP).
Benefits:
Simplified Administrator Management: Organizations using AD/LDAP for user management can now effortlessly manage Druva administrators as well.
Improved Efficiency: Leverage your existing AD/LDAP integration for centralized administration of Druva users and administrators.
What's New?
New AD/LDAP Connector: A new version of the AD/LDAP Connector is included to support Administrator Management functionality.
Updated Settings Location: Previously, AD/LDAP Connector and Account settings resided in the "End Points and SaaS Apps Settings" page. These settings have been relocated to the "Druva Cloud Settings" section within the DCP console.Upgraded Administrator Permissions: Upgrading of AD/LDAP Connectors is now an exclusive privilege of Druva Cloud Administrators.
Action Required: Upgrade all existing AD/LDAP Connectors to the new version. This upgrade is necessary to grant the required permissions to inSync and DCP administrators to modify mappings and configurations.
β Important
Existing AD mappings created for user management will continue to function. However, to allow inSync & DCP Administrators to modify mappings and related configurations, DCP Administrators must upgrade all existing AD/LDAP connectors.
For more information, see, Upgrade AD/LDAP Connectors.
Feature
Introducing Inactive Administrator Policy for administrator account management
We have introduced the Inactive Administrator Policy designed to enhance administrator account management.
Key highlights:
Druva Cloud Administrators can now set a specific inactivity period for administrator accounts.
Administrator accounts that remain inactive beyond the defined period will be automatically disabled.
This feature helps ensure that only active administrators have access to the Druva environment, effectively managing the lifecycle of administrator accounts and minimizing exposure to potential attacks.
For more information, see Configure Inactive Administrator Policy.
Archived Release Notes
For release notes of previous cloud updates, see Archived Release Notes.