A PM’s Perspective: Why We Built vSEC:CMS 7.2

Date: 2026-01-13
Author: Anders Adolfsson, Global Product Manager

When we sat down to scope vSEC:CMS 7.2, the theme that kept coming up wasn’t just “new features”, it was friction. Specifically, the friction of the “last mile” of MFA adoption. How do we get security keys into hands, and how do we keep them working without burying IT in support tickets?

Released on November 11, 2025, vSEC:CMS 7.2 is our answer to those questions. Here is the inside scoop on why we built these specific features and how they solve the problems you’ve been telling us about.

1. Tackling the “Day Zero” Migration Headache

One of the toughest conversations I have with customers goes like this: “We have 5,000 active YubiKeys deployed, but they aren’t managed. How do we bring them into vSEC:CMS without recalling every single device?”

Historically, the answer was painful. You had to manually reset them one by one. We knew we had to fix that.

How We Solved It

In 7.2, we built a unified, automated migration flow. We wanted to make this invisible to the end-user and effortless for the admin. Now, when an unmanaged active YubiKey is connected, our system takes over:

• It cleans the slate: Automatically resetting the PIV applet (including PUC and PINs).
• It secures the foundation: Wiping old keys and generating new, diversified credentials unique per YubiKey and protected by vSEC:CMS.
• It brings it home: Enrolling the device into the vSEC:CMS lifecycle instantly.

This is about turning “legacy hardware” into “managed assets” without the administrative burden.

2. Light FIDO2 Management

Another pain point we were aware of was the absence of FIDO2 in our lightweight application, vSEC:CMS Agent App. It was in our roadmap since the beginning, but we awaited the launch of FIDO2 in the Admin App. After a great launch, we were ready to push this to the Agent App, more frequently found at the helpdesk, because of its lightweight nature.

The full version, the Admin App, can still benefit Level 1 helpdesk staff who need to assist a user in resetting a stuck key or removing a passkey. Of course, we recommend that they be limited in access and permissions by their administrators.

Empowering the Agent App

We decided to push powerful lifecycle capabilities down to the vSEC:CMS Agent App. By extending these tools to the lighter client, we are empowering your front-line support to:

• See what’s happening: List and remove specific passkeys.
• Onboard faster: Assist users with fingerprint enrollment.
• Fix it fast: Perform full FIDO2 application resets when things go wrong.

We built this so your helpdesk can solve problems on the first call, rather than escalating them to the engineering team.

3. Freedom of Choice (Hardware Ecosystem)

I’ve always believed that you shouldn’t be forced to choose a CMS based on hardware, or hardware based on a CMS. You should choose the best tool for the job. That’s why we are constantly expanding our ecosystem.

In 7.2, we’ve added full lifecycle support for three very different, very capable devices:

1. Thales SafeNet eToken FIDO NFC: expanding options for enterprises seeking a robust, NFC-enabled authenticator for both mobile and desktop use.
2. Swissbit iShield Key 2: This was a priority for our high-compliance customers needing FIPS 140-3 Level 3 certification.
3. AuthenTrend ATKey.Card.NFC: We are seeing massive growth in biometric smart cards, especially in the APAC region, and this integration ensures we are ready for that wave.

The Bottom Line

vSEC:CMS 7.2 isn’t just an update; it’s a strategic move to lower the barrier to entry for passwordless security. We automated the hard stuff (migration) and delegated the daily stuff (helpdesk tasks) so you can focus on the big picture.

I’m incredibly proud of what the engineering team delivered here. If you want to see it in action, book a demo, and let’s talk about how we can remove the friction from your environment.

About Author

Anders Adolfsson is Versasec’s Global Product Manager. He is an experienced solutions architect with extensive experience in bringing products and ideas to the market, mostly with new and emerging technologies for Fortune 500 enterprises. Anders has been with Versasec for nearly 10 years and brings to his position more than 30 years of experience in IT, sales, pre-sales, services, project management, and development. Before being Product Manager, Adolfsson worked as a Technical Consultant in the Nordics Region and as IT Director.