These release notes for Extreme Platform ONE Security version 25.6.0 provide a technical summary of new capabilities, addressed defects, known limitations, and supported hardware for identity-based network and application access security across campus and remote environments. The release introduces enhanced certificate lifecycle management, including client certificate deployment, CSR support for EAP-TLS, global user and device block lists, expanded security logging for network access activity, containerized RadSec proxy deployment, support for HENNGE One as an identity provider, multiple location selection within security policies, and improvements to client, posture, and application visibility. Updates also include refinements to MDM integration workflows, Eduroam configuration documentation, Fabric Engine L2 fingerprint support, and backend API refactoring in preparation for upcoming releases. The notes detail resolved issues affecting UI behavior, authentication workflows, RadSec proxy status, macOS SSO, Ubuntu service connector installation, and SSID synchronization, while documenting known constraints such as iOS tunnel limitations, application connector dependencies, and performance considerations at scale. Supported access points and switching platforms, along with minimum software versions and onboarding models, are specified, providing operational guidance for experienced network and security administrators planning or upgrading production deployments.
