We’re excited to share the latest enhancements in AdminStudio 2026 R2, designed to simplify application packaging, deployment, security, and lifecycle management across modern enterprise environments.

Support for PowerShell App Deployment Toolkit (PSADT) 4.1.8

AdminStudio now supports PowerShell App Deployment Toolkit (PSADT) version 4.1.8, enabling you to create, edit, and deploy PowerShell‑wrapped packages using updated templates. This includes improved logging, enhanced script functions, and alignment with modern deployment practices. You can wrap MSI, EXE, and MSIX packages, import and modify existing PSADT packages using the latest 4.1 functionality, convert them to MSI, MSIX, or App‑V formats, and deploy the packages to endpoint systems.

Migration of PSADT v3.x Packages to the Latest Version

AdminStudio now supports migrating application packages built on PSADT v3.x to the latest PSADT version. A new “Migrate to Latest PSADT” option is available in the package context menu, allowing you to upgrade existing PSADT packages through a guided workflow without requiring manual script or configuration changes.

To migrate, simply right-click the PSADT-based package and select this option.

Support for Publishing and deployment of Mac Packages (PKG and DMG) to Microsoft Intune

AdminStudio now supports publishing and deployment of macOS packages (PKG and DMG) to Microsoft Intune. You can configure and publish Intune app metadata—such as App Information, Requirements, Detection Rules, and Scope Tags—using the existing Intune publishing workflow. This enhancement streamlines the publishing process, extends platform support, and enables better management of macOS application deployment through Intune.

Quick Repackaging Using Local Sandbox for MSI/EXE Conversion

We have introduced Quick Repackaging using a local sandbox, enabling the conversion of MSI and EXE packages into modern formats such as MSI, MSIX, and App‑V5.

With this capability, you can efficiently convert applications without manually rebuilding installers, helping standardize deployment across enterprise environments. The local sandbox-based approach makes the repackaging process significantly faster compared to traditional VM-based repackaging, while also being more cost-efficient.

To use this feature, right-click on the MSI or EXE package and select Quick Repackage from the context menu.

Intune Deployment Data Enhancements

The Intune Deployment Data tab now includes new Dependency and Supersedence subtabs. These enhancements allow you to define prerequisite applications for installation and configure upgrades or replacements of existing applications. This helps ensure proper installation sequencing, simplifies lifecycle management, and improves deployment reliability in Intune.

AI-Powered Community Buzz in App Insights

A new Community Buzz section has been added to the App Insights tab. This feature provides AI-generated, community-driven insights on application packaging, deployment, and policy management. It surfaces relevant articles, best practices, and real-world guidance from trusted sources, along with links to full content for deeper exploration.

Digital Signature Visibility Enhancements

Enhancements have been made to improve the visibility of digital signing status:

• A “Digitally Signed by Publisher” indicator is now available in the Backlog grid, using an icon to quickly identify whether a package is publisher-signed.
• A new “Digitally Signed” column has been added during Package Feed Module imports, displaying signing status to support better decision-making when selecting packages.

PowerShell Cmdlets and REST APIs Enhancements

New PowerShell cmdlets and REST APIs are now available to support Intune Supersedence, Dependencies, and the migration of PSADT 3.x packages to the latest version, enabling better automation and integration with deployment workflows.

For the release notes, please click here.

This blog describes recent changes to encryption handling in AdminStudio, the impact of these changes after upgrading from earlier versions, and the steps required to migrate existing encrypted credentials.

Overview

AdminStudio has been updated to use modern, stronger encryption algorithms across the product. All legacy encryption implementations have been fully removed and replaced with newer encryption mechanisms.

These changes:

• Apply to all AdminStudio customers
• Are not limited to specific configuration modes or optional settings
• Are mandatory as part of ongoing security and compliance improvements

Impact of the Change

After upgrading to the latest version of AdminStudio:

• All encryption operations use newer encryption algorithms
• Older encryption and decryption logic is no longer present in the source code
• Encrypted data created using earlier versions cannot be decrypted directly by the upgraded product

As a result, previously stored credentials and secure values must be migrated so they can be used by the updated product.

Handling Existing Encrypted Data

To support migration of previously stored encrypted values, AdminStudio provides a separate Encryption Migration Tool.

The tool:

• Decrypts existing encrypted values using the legacy encryption method
• Re‑encrypts them using the new encryption mechanism
• Updates the stored data so it is compatible with the upgraded AdminStudio version

Encryption Migration Tool

Availability

• The Encryption Migration Tool is provided as a separate download
• It is distributed as a compressed (ZIP) archive
• A download link is surfaced in AdminStudio through the Important Messages section, accessible from the AdminStudio ribbon beside Help Contents

When the user selects this option, a popup is displayed. Clicking the “Click here to download migration tool” hyperlink in the popup successfully downloads the migration tool for use.

  Scope

The Encryption Migration Tool can:

• Re‑encrypt credentials stored in the AdminStudio catalog
• Re‑encrypt credentials stored in configuration files
• Be run multiple times, for example when multiple configuration (AC) files exist

The tool operates independently of AdminStudio and is not embedded within the product.

Recommended Upgrade Sequence

For correct behavior, perform the following steps in order:

1. Complete the AdminStudio setup upgrade
2. Complete the AdminStudio catalog upgrade
3. Run the Encryption Migration Tool
4. OR manually re‑enter all credentials in AdminStudio
5. Launch or relaunch AdminStudio

Important:

If AdminStudio is already running, close it before running the migration tool and reopen it after the migration completes.

Migrating Encrypted Passwords Using the Migration Tool

1. Complete the AdminStudio Upgrade

• Upgrade the AdminStudio setup
• Upgrade the AdminStudio catalog

Note: The migration tool must be run only after both upgrades are complete.

2. Download the Encryption Migration Tool

• Download the Encryption Migration Tool as a ZIP file from the provided download location (for example, PLC or the anonymous link shown in AdminStudio)
• Extract the ZIP file to a local folder

Note: The tool is a standalone utility and is not embedded in AdminStudio.

3. Launch the Encryption Migration Tool

• Run the main executable from the extracted folder
• The tool opens a UI similar to the AdminStudio Connect to Catalog dialog

4. Configure Catalog Connection Details

• Enter the required catalog connection details
• Click Test Connection to validate the details

Note: If the catalog contains encrypted passwords, they will be processed during migration. 

5. Specify an AAC File Path (If Applicable)

If applicable, provide the AAC file path used for Application Catalog or conversion workflows.

You may:

• Specify both the catalog and AAC file path
• Specify only the AAC file path
• Run the tool multiple times to migrate different AAC files individually

Note: Passwords stored in the specified AAC file are also re‑encrypted.

6. Start Migration

• Click Next to begin the migration
• Confirm the prompt to continue
• Review the list of database tables being updated
• Wait for the migration success message

Note: All detected passwords are decrypted using the old method and re‑encrypted using the new encryption mechanism.

7. Close the Tool and Relaunch AdminStudio

• Close the Encryption Migration Tool
• Launch AdminStudio again

Important: If AdminStudio was open during migration, it must be closed and relaunched.

Manual Re‑Entry of Credentials (Alternative)

If the Encryption Migration Tool is not used, all credentials must be manually re‑entered in AdminStudio.

Important Considerations

• All locations containing stored credentials must be updated
• Missing even one location will result in AdminStudio continuing to display an Important Message in the ribbon
• The UI does not automatically identify which credential locations remain unmigrated
• Documentation lists all relevant locations to assist with manual updates

Credential Locations Affected

Depending on product usage, credentials may exist in the following areas:

• Catalog connection settings
• Distribution and management system connections (for example, ConfigMgr, Workspace ONE, Intune)
• Application configuration files
• Conversion configuration files
• Certificate‑related settings (including MSIX Editor certificates)
• Virtual machine and server connection details

Locations Where Password or Sensitive Fields Are Present

Options Window

• All Distribution Connections in the Options window
• All Monitored Directory Connections in the Options window

Plugin Options

• AAC Options
  • Authentication Type: Server → Password field
• App-V to MSIX Conversion Options
  • Authentication Type: Server → Password field
  • Signing Type: Standard → Certificate Password
  • Signing Type: Custom → Arguments field
• Intune App Conversion Options
  • Authentication Type: Server → Password field

Wrap Options

• Output Section
  • Authentication: Server → Password field

Package Feed Options

• Authentication: Server → Password field

Server Options

• Microsoft ACT → Password field

Package Automation Options

• Notification Settings → Password field

Flexera Integration

• FSG → Password field
• FSG – AdminStudio via FSG → Password field

MSIX Editor

• Preferences Ribbon → Signing Tab
  • Select Certificate for Signing (.pfx) → Password
  • Signing Type: Custom → Arguments field

AAC

Machines Tab

• Properties → Machine Settings → Guest Password
• Properties → Virtual Machine Server → Server Password

Packages Tab

• Properties → MSIX Signing Options
  • Signing Type: Standard → Certificate Password
  • Signing Type: Custom → Arguments field

Tools Menu

• Tools → Options → MSIX Signing Options
  • Signing Type: Standard → Certificate Password
  • Signing Type: Custom → Arguments field

We’re excited to share the latest enhancements in AdminStudio 2026, designed to simplify application packaging, deployment, security, and lifecycle management across modern enterprise environments.

Integrating Omnissa App Volumes in AdminStudio

AdminStudio now integrates with Omnissa App Volumes, enabling a seamless, end‑to‑end workflow for App Volumes onboarding and management.

With this integration, you can:

• Import existing VHD/VHDX packages
• Convert MSI, EXE, and PS1 installers into:
  • VHD / VHDX
  • Wrapped MSI formats
• Automatically import converted VHD and wrapped MSI packages into the AdminStudio catalog

All converted applications are enriched with metadata and managed like any other application, streamlining conversion, onboarding, and lifecycle management within a single, centralized workflow.

Support for Tanium Distribution System

AdminStudio 2026 introduces a new Tanium Distribution Plugin, expanding the list of supported deployment systems.

Key benefits include:

• Direct publishing of MSI and EXE packages to Tanium
• A centralized and consistent deployment workflow
• A new Tanium Deployment Data tab in the Home Deployment Type view, providing Tanium‑specific deployment details

This enhancement simplifies cross‑platform application management and improves deployment visibility.

Repackager Now Supports MP4 Video Step Recording

Repackager now includes a built‑in Video Recorder to capture installation steps as high‑fidelity MP4 videos.

What’s new:

• A new “Use Video Recorder to capture installation steps and save a reviewable video” option in the Capture Settings panel
• Automatic recording of installation activities during repackaging
• Reviewable videos for validation, documentation, and troubleshooting

This feature improves accuracy and transparency in application repackaging workflows.

Password Encryption Update in AdminStudio

AdminStudio now uses stronger encryption to securely store all saved passwords.

Important updates:

• Existing saved passwords must be migrated to the new encryption format after upgrade
• A new Encryption Migration Utility allows one‑step migration of all credentials
• Alternatively, passwords can be re‑entered manually within AdminStudio
• An in‑product message is displayed until all passwords are updated

This update enhances security while ensuring a smooth migration experience.

Link for the Encryption Updates -

Password Encryption Update in AdminStudio

Support for Windows 11 25H2 (64‑bit)

AdminStudio 2026 adds support for Windows 11 25H2 (64‑bit), enabling you to:

• Test application compatibility against the latest Windows operating system
• Prepare your application estate for upcoming Windows deployments

Support for Microsoft ConfigMgr 2503

AdminStudio 2026 supports distributing the following deployment types to Microsoft ConfigMgr 2503:

• Windows Installer (MSI)
• MSIX Packages
• Legacy installers (EXE)
• PowerShell wrapped packages (PS1)
• App‑V (4.x and 5.0)
• Apple iOS (binary file and public store)
• Google Android (binary file and public store)

This ensures broad platform coverage and consistent deployment management.

InstallShield 2025 R2

AdminStudio 2026 includes InstallShield 2025 R2.

For detailed information, please refer to the InstallShield 2025 R2 Release Notes.

For the release notes, please click here.

AI Disclosure Document 

Purpose 

This document explains how AI capabilities are integrated into AdminStudio features, the scope of their functionality, and the principles governing transparency, control, and compliance. It ensures customers understand what the AI does, how it operates, and what safeguards are in place. 

Features Covered 

1. AI-Powered PowerShell Wrapping 
2. AI-Powered App Insights 

How AI Is Used 

1. AI-Powered PowerShell Wrapping 

• Objective: Automate the update and reuse of customized PowerShell App Deployment Toolkit (PSADT) scripts across application versions. 
• AI Functions:  
• Preserves prior customizations (pre-installation, post-installation, installation logic). 
• Updates version-specific details (paths, variables, dependencies) with contextual accuracy. 
• Adds new transforms introduced in the latest package. 
• Maintains syntactic correctness and avoids brittle replacements. 
• Integration: Works seamlessly with AdminStudio workflows and APIs for scalable automation. 
• Only the old script and application metadata are sent to the AI for analysis and script upgrade. The upgraded script is not cached or stored, as each script is unique to the customer and caching would not provide value. 

2. AI-Powered App Insights 

• Name: AI-Powered App Insights 
• Description: Provides intelligent insights on application performance, usage patterns, and optimization opportunities using AI-driven analysis. 
• Purpose & Scope: Enhance decision-making for app deployment and monitoring by automating data interpretation and suggesting improvements. 
• Target Users: Internal product teams, administrators, and enterprise customers using the app deployment toolkit. 
• The AI LLM response (application summary, command lines, etc.) is stored in the database to enable reuse for similar requests by other customers. 

Technology Details 

• Model Type: Meta Llama Maverick 4 (17B) large language model, sourced from AWS Bedrock.  
• Training Data: Customer data is not used for training or improving the model. No fine-tuning or retraining with user data.  
• Third-Party Tools: No external APIs or third-party tools are integrated apart from the LLM service itself. 

Data Handling & Privacy 

Data Collected 

• Application metadata only: Name, manufacturer, version, and package type for App Insights. 
• PowerShell script content: Used temporarily for PSADT upgrades. 
• No PII data is collected by the AI features 

Processing 

• Data is sent to the LLM (Meta Llama Maverick 4 via AWS Bedrock) for generating summaries, command lines, or script adaptations. 
• All communication uses encrypted tokens and secure channels. 

Storage & Caching 

• Only minimal metadata (product name and version) may be cached temporarily for reuse. Cache is a temporary mechanism for quick lookups and is not persistent storage.  
• No script content, customer data, or AI responses are cached or stored.  
• For App Insight: Only AI LLM responses (such as application summaries and command lines) are stored in the database for reuse.  
• For PSADT: Upgraded scripts are not cached or stored, as each script is unique to the customer. 

Security Measures 

• All communication with the LLM service uses encrypted tokens and secure channels. 
• Token validity will be reduced to 90 days in the next release. 
• Access is restricted to AdminStudio workflows; no external access is allowed. 

Compliance 

• Adheres to enterprise-grade security standards. 
• AI disclosure emphasizes transparency, control, and security. 
• Customers can opt out of AI features via AdminStudio settings.  

User Responsibilities 

• Users must provide the existing PowerShell script for upgrade (PSADT). 
• Users should mask or remove confidential details before submitting scripts for AI processing. 
• AI outputs are recommendations only; users must review and validate before deployment. 

Limitations 

• AI results are not guaranteed to be 100% accurate; human review is essential. 
• No fallback to standard wrapping if AI fails after selection (except in rare cases where previous versions exist). 
• AI does not override user-defined policies and cannot handle scenarios where scripts contain unmasked sensitive data. 

Contact / Support 

• For support, contact: support@flexera.com 
• Login to https://community.flexera.com/s/article/Contact-Flexera-Support and raise your support case. 

We are thrilled to announce the release of AdminStudio 2025 R3, designed to deliver a smarter, faster, and more integrated experience for IT teams and enterprises. This version brings cloud-first capabilities, AI-driven intelligence, and enhanced automation to simplify application readiness and deployment across diverse environments.

What’s New in AdminStudio 2025 R3?

AdminStudio on Microsoft Azure Marketplace

AdminStudio is now available on Microsoft Azure Marketplace, enabling organizations to easily acquire, deploy, and activate licenses in a secure cloud environment. This release delivers a streamlined experience with automated provisioning through Azure Resource Manager templates, flexible licensing options (including trial and BYOL), and a tailored evaluation workflow for quick onboarding. By leveraging Azure’s scalability and integration, enterprises can simplify application packaging and management while ensuring compliance and operational efficiency.

Cloud License Server (CLS) Integration

AdminStudio now supports Cloud License Server (CLS) powered by Flexera FlexNet Cloud Licensing Service. This enhancement eliminates the complexity of setting up and maintaining local license servers, enabling dynamic and centralized license management in the cloud. Organizations can now manage licenses seamlessly across modern deployment environments without additional infrastructure overhead.

AI-Powered Enhancements

Artificial Intelligence is now integrated into AdminStudio to improve efficiency and reduce manual effort. A new Enable AI Features option activates all AI-powered capabilities, including automated script retention and intelligent enhancements throughout the packaging process. Additionally, the new App Insights Tab provides intelligent summaries and actionable recommendations, helping teams make informed decisions and boost deployment confidence.

Jamf Pro Cloud Support

AdminStudio now supports publishing macOS packages (.dmg and .pkg) directly to Jamf Pro Cloud, part of the Jamf Pro Distribution System. This enhancement provides greater flexibility for macOS deployments, allowing IT teams to configure and manage Jamf Pro Cloud seamlessly for modern enterprise environments.

Intune Assignments Improvements

The Intune Assignments interface has been redesigned with a modern, refreshed look while retaining its familiar layout. A searchable, paginated group selection pane replaces the previous static list, significantly improving performance and scalability. New sub-tabs—Required, Available, and Uninstall—make it easier to configure assignments for Intune applications in large environments.

Package Feed Module Enhancements

AdminStudio now introduces additional properties in the Package Information tab for packages imported from the Package Feed Module. These include indicators for New Version Available, New Version Release Date, and Release Date, providing better visibility into version details and release timelines for improved planning and management.

PowerShell Wrapping Enhancements

When wrapping a package using the PowerShell Wrapper, a new Retain Custom Scripts for New Version option ensures that any custom PowerShell script changes made in previous versions are automatically preserved and reapplied using Artificial Intelligence. This feature is available when Enable AI Features is activated, streamlining updates and reducing manual effort.

Support for Multiple Distribution Systems

Automation workflows now support adding more than one Publish step within a single workflow. This enhancement allows packages to be published to different distribution systems with separate configurations, improving flexibility and efficiency in multi-platform environments.

Windows Server Compatibility

AdminStudio 2025 R3 introduces compatibility testing for the latest operating systems, including Windows Server 2022 and Windows Server 2025. This ensures that applications can be validated against future-ready platforms, helping organizations stay ahead in their deployment strategies.

PowerShell Cmdlets / REST API Enhancements -

AdminStudio now introduces several new PowerShell cmdlets and REST APIs to enhance package automation, preserve PSADT script settings, and streamline Jamf Pro Cloud distribution workflows.

Why Upgrade?

AdminStudio 2025 R3 is built for modern IT environments, offering:

• Cloud-first flexibility
• AI-driven intelligence
• Enhanced automation and scalability
• Future-ready OS compatibility

For the release notes, please click here.

AdminStudio 2025 R2 is live now and available for download from the Product and License Center. This release hosts a brilliant set of features/enhancements and bug fixes.

Key Highlights:

Support for PowerShell App Deployment Toolkit (PSADT) v4.0

AdminStudio now supports PSADT version 4.0, while maintaining full compatibility with version 3.0. This dual support ensures:

• Seamless transition for teams upgrading to the latest toolkit.
• Continued use of legacy scripts without disruption.
• Enhanced editing capabilities for both versions, allowing customization of deployment logic, user prompts, and installation behavior.

The integration also improves automation workflows by enabling AdminStudio to wrap applications using PSADT more efficiently, making it easier to manage complex deployments across enterprise environments.

 Extended Support for Intune Deployment Data – Scope Tags

AdminStudio now includes Scope Tags. This enhancement allows IT administrators to tag packages with specific labels that define access boundaries. These tags are especially useful in large organizations where role-based access control (RBAC) is essential. By assigning scope tags, teams can:

• Segment access to deployment packages based on roles or departments.
• Ensure that only authorized personnel can view or manage specific packages.
• Improve governance and reduce the risk of misconfiguration or unauthorized changes.

This feature aligns with Microsoft Intune’s best practices for scalable and secure deployment management.

Expanded Package Support in Package Feed Module (PFM)

The Package Feed Module (PFM) has been significantly upgraded, now supporting approximately 11,000 packages, up from 8,800. And we’re not stopping here—more packages are actively being added to further expand support. This expansion means:

• Broader coverage of commercial and open-source applications.
• More options for packaging and deployment without manual scripting.
• Continued support for automation workflows, including silent installs, detection rules, and uninstall commands.

This update is particularly beneficial for organizations managing diverse software portfolios, as it reduces the time and effort required to prepare packages for deployment.

Streamlined Migration Process with Package Selection

Previously, migration workflows in AdminStudio were limited to single applications. With this release, users can now:

• Select multiple packages during migration.
• Migrate entire application suites or related components together.
• Reduce manual effort and ensure consistency across migrated items.

Intune Assignment Group Selection – UI Enhancement and Performance Improvement

AdminStudio introduces a new interactive pane for selecting Intune Assignment Groups, replacing the static dropdown with a searchable, paginated interface. This improves performance, usability, and scalability—allowing users to efficiently browse, retain, and manage group selections during assignment and deployment workflows.

PowerShell Cmdlets / REST API Enhancements -

Several new PowerShell Cmdlets and REST APIs for Scope Tags have been introduced to manage Scope Tags in AdminStudio, enabling automated tagging of packages for improved role-based access and deployment control.

InstallShield 2025 R1 Integration -

The latest version of InstallShield 2025 R1 is included in the AdminStudio 2025 R2 release.

MSIX Editor Issue Fixes -

Recent updates to the MSIX Editor address several functional inconsistencies, including fixup failures for specific packages, trace-related application behavior, and improvements to ensure PowerShell file extensions are handled in a case-insensitive manner. These refinements aim to enhance reliability and user experience across packaging and editing workflows.

For the release notes, please click here.

Join our expert panel as they discuss the state of MSIX in 2025

Join our upcoming webinar for expert insights into the state of MSIX in 2025—where it’s headed, how to adopt it, and what tools you’ll need in 2025 and beyond. We’ll look at:

• The state of MSIX in 2025—Discover the latest market adoption trends, key milestones and how MSIX stacks up against legacy formats
• Tooling ecosystem update—Stay ahead of the curve with the latest updates on Windows 11 schema extensions, TMEditX enhancements, Package Support Framework (PSF) advances and emerging helpers
• Path to mainstream adoption—Learn how MSIX will fill the void left by App-V's end-of-life stage, and get expert advice on migration strategies, co-existence tips and best practices for a smooth transition
• Live demo of AdminStudio MSIX Editor—See MSIX Editor's key features and discover tricks for streamlining your repackaging tasks

What you'll take away:

• A deeper understanding of MSIX adoption trends and compatibility
• Key insights into the evolving tooling ecosystem
• A clear roadmap for migrating to MSIX and co-existing with legacy formats
• Practical tips for streamlining your repackaging tasks with MSIX Editor

Speakers

• Venkat Ram Donga, Product Management Director, AdminStudio
• Mike O'Connor, Sr. Solution Engineer, AdminStudio
• Tim Mangan, Owner, TMurgent Technologies LLP

Register here

At Flexera, we prioritize the security and reliability of our software solutions. We would like to inform you about a recent update to our License Server that enhances its security posture.

Identified Vulnerability

A vulnerability was identified in the License Server due to the use of an outdated DLL file: libssl-1_1.dll. This posed a potential security risk and required immediate attention.

Resolution and Upgrade

Our team has successfully fixed the issue. As part of this, the vulnerable libssl-1_1.dll has been replaced with the secure and updated libssl-3-x64.dll.

Security Validation

Following the upgrade, we conducted a comprehensive scan on the updated License Server. The scan confirmed that the previously reported vulnerability has been fully resolved.

Deployment and Customer Action

The updated and secure License Server has now been deployed and replaced in PLC (Product and License Center). We encourage all customers to download and install the latest License Server, which is now available on the PLC (Product and License Center). This ensures your systems remain secure and up to date.

We remain committed to providing secure and dependable solutions. If you have any questions or need assistance, please feel free to contact us.