What's New in Imprivata Mobile Device Access
Imprivata Mobile Device Access 10.0 contains the following new features and technology updates.
New Features
MDA Device Console and Dashboard
This release introduces a Device Console and Dashboard that gives administrators a centralized view of their MDA device fleet.
This helps customers track and manage shared devices more effectively, improve visibility into device assignment and usage, and strengthen operational control.
Activity View
Activity View gives administrators a searchable, exportable audit trail of MDA activity across shared devices, users, authentication methods, and applications.
Administrators can review recent check-in, check-out, and application login activity by timestamp, serial number, device name, and user.
Admin Tab
The new Admin tab brings key MDA administration into one centralized experience.
IT teams can manage access, configure Console authentication, set up mobile device management integration, and manage features more easily, helping reduce administrative effort and making it simpler to support shared device programs at scale.
Support for Epic Rover OIDC Login
MDA 10.0 introduces Epic Rover OIDC login to support a simpler login experience to Epic Rover.
This enables a streamlined “one-click” login workflow, making it as simple as possible to access what they need to get their work done.
Epic is a registered trademark of Epic Systems Corporation.
Support for Zebra Enterprise Home Screen
MDA now supports Zebra Enterprise Home Screen (EHS) as a launcher on Zebra Android devices managed through Microsoft Intune. Administrators can use EHS to restrict devices to an approved set of apps.
Lock Device When App Logout Fails
MDA allows administrators to lock the device when an app logout step does not complete, helping protect patient data and prevent the next user from picking up a device with a previous user's session still active.
Administrators enable this behavior by adding the new lockOnLogoutFail setting to the ConfigFlags value in their MDM, either on its own to lock the device whenever any app logout fails, or appended to a specific app entry to lock only when that app's logout fails (for example, com.android.chrome:clearData|lockOnLogoutFail).
When a lock is triggered by a failed logout, the user's session is preserved so the same user can sign back in and continue their work; on the next sign-out attempt, the session is cleared if logout succeeds. A clear on-screen message informs the user when the device has been locked because logout could not be completed.
Cisco Webex Logout Support
MDA now signs users out of Cisco Webex on shared Android devices. The behavior is delivered through an updated Cisco Webex app profile in the latest MDA Application Profiles package. No new AppConfig settings or Imprivata Admin Console changes are required.
Qualifications
-
Sonim XP Pro
-
Rhino T105
-
Zebra TC78
Upcoming End of Life
-
Imprivata MDA will end support for Android 12 at the end of June 2026.
Features in Previous Releases
Previous releases of Imprivata MDA contained the following new features, enhancements, and fixes.
Epic API Logout
Use the Epic API logout feature to disassociate a user from a device in Epic and prevent push notifications (messages, alerts, or calls) from being sent to the device after check in.
Epic is a registered trademark of Epic Systems Corporation.
Support for FIDO Badge Enrollment
Imprivata MDA now supports enrolling a new or replacement FIDO security key to a user from the shared device itself.
Additional Highlights
-
Imprivata MDA now supports the ability to enter a SIM card PIN, before locking the device.
-
Improvements to the notification display to ensure that when a device is locked the notification is not minimized.
-
Imprivata MDA now supports a configuration to the Emergency Dialer feature to not require a prompt before making a call.
-
Imprivata MDA supports the use of Authenticator specific grace periods for EAM. Depends on EAM 26.1 and later.
Support for FIDO Authentication
Add support for FIDO security keys as an authentication method for Imprivata MDA.
Users can sign in with FIDO security keys for fast, passwordless access on shared devices, reducing friction to access shared devices and approved apps.
Support for Samsung DeX
MDA now integrates with Samsung DeX, letting staff authenticate to their device and launch a secure, desktop-like workspace on any DeX-enabled screen—no extra passwords or context switching. Users can move from handheld to docked workflows seamlessly while maintaining the same strong security.
Support for Emergency Calls from the MDA Lockscreen
MDA now supports a configuration to allow an end user to make a phone call without having to unlock the device.
Fix for an issue where the previous user session is sporadically not fully logged out for some Microsoft applications when using Accessibility (IM-17290, SER-16851, SF 01520321)
Face Recognition as an Authentication Method
-
Users can now use their face to satisfy multi-factor authentication when checking out a shared device. Users can authenticate in seconds without needing to type a password or use a separate token adding a strong layer of verification, reducing the risk of unauthorized access on shared devices. Additionally, it helps the organization move toward more efficient, user-friendly authentication while maintaining compliance and security standards.
-
Device unlock with face recognition. End users can use face recognition to unlock a shared mobile device, a capability unique to Android compared to iOS. Once authenticated to the device, users can quickly unlock it without a badge tap, typing a PIN or password. Ensuring fast access only to the authenticated user.
-
Face recognition enrollment. Users can now enroll their face once and use it to authenticate on both mobile devices and desktop workstations. Enroll once and use anywhere. This simplifies enrollment by eliminating the need to register separately on each device type. Users enjoy the same seamless biometric authentication whether on mobile or desktop.
-
Utilizes the Imprivata Cloud Platform Common Authentication
-
Enrollment includes the capture of Consent
-
No biometric is stored on the device
-
Includes detection
-
Supports authentication with face masks
Additional Highlights
-
Added support to allow a user to update their password when it has been changed in Active Directory.
-
Supports the ability to create a new Active Directory password from the mobile device.
-
The name of the user authenticated to the device is now more prominent on the lock screen.
-
Supports enabling verbose logging from MDM appconfig
-
Add support for automatically launching apps at device login. Admins can now configure an app (ex. Microsoft Teams) or multiple apps, to launch automatically after the user authenticates to a device for their shift. This supports more immediate access to critical message and alerts, and enables more seamless logout of user sessions as devices change hands.
-
Zebra Workstation Connect now supports Imprivata MDA. The integration empowers clinicians using Zebra Workstation Connect with fast, secure, and seamless access to clinical systems on a single device, anywhere in the facility.
-
Imprivata MDA now shares the common Imprivata user interface style.
-
Imprivata MDA mobile device activity reports now include app sign-in events, include information on the app and method of sign-in.
Requires Imprivata appliances running 25.2 or later.
-
Add support to clear notifications. This feature will cancel notifications sent to a device with no user logged in.
Added support for lock and log out on charge. When configured with AppConfig, Imprivata MDA detects that the device is charging and will lock the device and/or log the user out of the device and log the user out of apps.