What's New in Imprivata Mobile Device Access

Imprivata Mobile Device Access 8.2 contains the following new features and technology updates.

New Features

Epic API Logout

Use the Epic API logout feature to disassociate a user from a device in Epic and prevent push notifications (messages, alerts, or calls) from being sent to the device after check in.

NOTE:

Customers should contact Product Management at mobile@imprivata.com to learn more about this feature and testing.

Epic is a registered trademark of Epic Systems Corporation.

Support for FIDO Badge Enrollment

Imprivata MDA now supports enrolling a new or replacement FIDO security key to a user from the shared device itself.

Additional Highlights

  • Imprivata MDA now supports the ability to enter a SIM card PIN, before locking the device.

  • Improvements to the notification display to ensure that when a device is locked the notification is not minimized.

  • Imprivata MDA now supports a configuration to the Emergency Dialer feature to not require a prompt before making a call.

  • Imprivata MDA supports the use of Authenticator specific grace periods for EAM. Depends on EAM 26.1 and later.

Upcoming End of Life

As of January 1, 2026, Imprivata MDA no longer supports the following Android versions:

  • Android 9, 10, and 11

  • Imprivata MDA will end support for Android 12 at the end of June 2026.

Features in Previous Releases

Previous releases of Imprivata MDA contained the following new features, enhancements, and fixes.

Support for FIDO Authentication

Add support for FIDO security keys as an authentication method for Imprivata MDA.

Users can sign in with FIDO security keys for fast, passwordless access on shared devices, reducing friction to access shared devices and approved apps.

Support for Samsung DeX

MDA now integrates with Samsung DeX, letting staff authenticate to their device and launch a secure, desktop-like workspace on any DeX-enabled screen—no extra passwords or context switching. Users can move from handheld to docked workflows seamlessly while maintaining the same strong security.

Support for Emergency Calls from the MDA Lockscreen

MDA now supports a configuration to allow an end user to make a phone call without having to unlock the device.

Fix for an issue where the previous user session is sporadically not fully logged out for some Microsoft applications when using Accessibility (IM-17290, SER-16851, SF 01520321)

Face Recognition as an Authentication Method

  • Users can now use their face to satisfy multi-factor authentication when checking out a shared device. Users can authenticate in seconds without needing to type a password or use a separate token adding a strong layer of verification, reducing the risk of unauthorized access on shared devices. Additionally, it helps the organization move toward more efficient, user-friendly authentication while maintaining compliance and security standards.

  • Device unlock with face recognition. End users can use face recognition to unlock a shared mobile device, a capability unique to Android compared to iOS. Once authenticated to the device, users can quickly unlock it without a badge tap, typing a PIN or password. Ensuring fast access only to the authenticated user.

  • Face recognition enrollment. Users can now enroll their face once and use it to authenticate on both mobile devices and desktop workstations. Enroll once and use anywhere. This simplifies enrollment by eliminating the need to register separately on each device type. Users enjoy the same seamless biometric authentication whether on mobile or desktop.

  • Utilizes the Imprivata Cloud Platform Common Authentication

  • Enrollment includes the capture of Consent

  • No biometric is stored on the device

  • Includes detection

  • Supports authentication with face masks

Additional Highlights

  • Added support to allow a user to update their password when it has been changed in Active Directory. 

  • Supports the ability to create a new Active Directory password from the mobile device.

  • The name of the user authenticated to the device is now more prominent on the lock screen.

  • Supports enabling verbose logging from MDM appconfig

  • Add support for automatically launching apps at device login. Admins can now configure an app (ex. Microsoft Teams) or multiple apps, to launch automatically after the user authenticates to a device for their shift. This supports more immediate access to critical message and alerts, and enables more seamless logout of user sessions as devices change hands.

  • Zebra Workstation Connect now supports Imprivata MDA. The integration empowers clinicians using Zebra Workstation Connect with fast, secure, and seamless access to clinical systems on a single device, anywhere in the facility.

  • Imprivata MDA now shares the common Imprivata user interface style.

  • Imprivata MDA mobile device activity reports now include app sign-in events, include information on the app and method of sign-in.

    Requires Imprivata appliances running 25.2 or later.

  • Add support to clear notifications. This feature will cancel notifications sent to a device with no user logged in.

Added support for lock and log out on charge. When configured with AppConfig, Imprivata MDA detects that the device is charging and will lock the device and/or log the user out of the device and log the user out of apps.

  • Add support for setting a default domain, so the end user does not always have to choose one from the drop-down list before authenticating to Imprivata MDA.

  • Add support for offline authentication. Offline authentication allows a user to log into Imprivata MDA even when the app cannot connect to the Imprivata server. When offline, Imprivata MDA accepts the last validated user credentials, including: proximity card, Imprivata PIN, and username + password.