What's new in version 39?

The new features and enhancements and changes in functionality included in version 39 of the Pexip Infinity platform and associated web app, along with any planned changes, are described below.

For full information about the release, see the Pexip Infinity release notes and the Pexip Web App release notes.

For information about new features and changes to this and earlier versions of Pexip Infinity, see:

Pexip Infinity v39 new features and enhancements

Pexip Infinity platform

Feature	Description	More information
Teams Connector enhancements: new authentication model with Pexip Infinity, trusted lobby bypass for Zoom Rooms	The Teams Connector has a new authentication model with Pexip Infinity due to the deprecation of TLS client certificates by public Certificate Authorities. All customers using Teams Connectors must upgrade their Pexip deployment — both the Pexip Infinity platform and the Pexip Teams Connector — to version 39 before May 2026. See Pexip Infinity v39 changes in functionality for more information. Pexip's Cloud Video Interop (CVI) integration with Microsoft Teams also contains the following enhancements: Calls from your Zoom Rooms can now be treated as trusted/registered devices and allowed directly into the Teams meeting (i.e. bypassing the lobby). This requires a new zoomtrustedjoin license to be installed in Pexip Infinity, and configuration of your Zoom customer account number (Call control > Trusted join).	Integrating Microsoft Teams with Pexip Infinity Upgrading the Teams Connector to the latest software Configuring Pexip Infinity as a Microsoft Teams gateway Enabling trusted join for Zoom Rooms
Personal conference layouts now a fully supported feature	Personal layouts, where a Host or Guest participant can choose the layout they receive without affecting the conference-wide layout received by other participants, is now a fully supported feature. Pexip web app users can now also select a personal layout via the web app.	Applying a personal layout
Hyper-V 2025 support	Microsoft Hyper-V 2025 is now supported. It must be deployed manually using the generic Management Node and Conferencing Node images. From version 39 only Hyper-V 2025 is supported (i.e. Hyper-V 2019 is no longer supported).	Installing Pexip Infinity in a Microsoft Hyper-V environment
New default minimum PIN length of 6 digits	The default minimum PIN length for VMRs has changed from 4 digits to 6 digits. This applies to new installations of Pexip Infinity only. There is no impact to existing systems on upgrade. PINs may still be between 4–20 digits long, subject to the new Minimum PIN length setting in Platform > Global settings > Service configuration.	About PINs, Hosts and Guests
In-conference timer or countdown*	You can set an in-conference timer or countdown clock that is displayed at the top of the screen to all conference participants. There are 3 types of timer that can be displayed: Elapsed time since the start of the conference Time remaining countdown Current time (UTC)	Displaying an in-conference timer / countdown
Support for external media collection in Google Meet	There is a new "External media processing" in-conference indicator and associated audio announcement that is shown when Google Meet external media processing is active.	Integrating Google Meet with Pexip Infinity
Theme improvements: new media collection audio files and settings	There are several updates to themes in support of the new external media collection indicators for Google Meet: New audio files: conf-external-media-processing-start_48kHz_mono.wav and conf-external-media-processing-stopped_48kHz_mono.wav. New fields in the themeconfig.json file: "disable_external_media_proc_indicator" and "external_media_proc_indicator_text".	Rules and requirements for customized themes
Customizable registration SSO timeout	For SAML Identity Providers that do not support the SessionNotOnOrAfter attribute for customizing session timeouts (such as Microsoft Entra ID), there is now support for an alternative SessionDuration custom attribute.	Setting a custom session timeout for registrations
Administrative improvements: vendor details for registered devices; upload progress bar	This release contains the following administrative improvements:
	The registration status and registration history pages now include vendor information for the registered device. All cosmetic references to Microsoft Lync have been removed from the Administrator interface, and thus all labels and messages now refer to only Microsoft Skype for Business / SfB. When uploading an upgrade package, Administrators are now presented with a progress bar.	Server design recommendations Viewing current and historic registrations
* Technology preview only

Pexip web app (Webapp3)

Feature	Description	More information
New and improved features
Custom background image deletion	Users can now delete a custom background image that they had previously uploaded.	Blurring or replacing your background
Additional join options	Prior to joining a meeting, participants can now open and select from a list of alternative joining methods. By default the options are Video, Audio-only and Presentation only. Administrators can disable this feature, and change the options that are offered and the order in which they appear, via the new availableCallTypes setting in the defaultUserConfig section of the branding manifest. Additionally, administrators can change the text that is used to describe each option via the new joining-options[...] tokens within the media section of the language file.	Joining a meeting
Live captions speaker diarization *	The Live Captions History panel now includes the name of the participant who spoke.	View a live transcription of the meeting
Meeting Manager: breakout room support *	Meeting Managers can now manage breakout rooms. They also have the option to join the main room or individual breakout rooms directly as an additional audio/video Host participant.	Managing meetings on the web app
Participant search	The Participants panel now includes a search box, allowing users to find a participant by entering the start or part of their display name.	Search for a participant
Support for personal layouts	When personal layouts are enabled by an administrator, the Meeting layouts menu now allows participants to select a layout that applies only to themselves.	Meeting layout
Additional media statistics	The Media statistics dialog includes additional information such as average encode and decode time, time to capture statistics, and quality limitation information.	View diagnostic information
Spotlight indicator	Participants who are currently spotlighted now have a icon next to their name in the Participants panel.	View a participant's status
Changes in functionality
Settings menu	The options under the Settings menu have been reorganized and added to: A new Advanced menu, which includes some options previously under Additional settings, Video and sound, and Meeting settings. A new Joining menu, where users set pre-join defaults such as their name and whether their camera and mic are enabled. The Quality menu includes the options to enable Noise suppression and Prioritize sharing motion. The option to Lock the meeting is now available from the toolbar only. The About menu includes a customizable Privacy policy link. By default this directs to Pexip's privacy policy.	Settings menu
callType changes	Previously, the callType option (which determined whether the participant was able to send or receive audio or video) was specified via a numerical list that mapped on to the available combinations. Now, this list uses enumerations, and presentation is also included as an option. callType is used when customizing the default user settings and in preconfigured URLs to specify the call type used when joining a call. It is also used when specifying the options available when using the new availableCallTypes setting. The previous numerical format will continue to be supported to provide backwards compatibility.	Call types
Order of participants	Within the Participants panel, all Hosts now appear first (in alphabetical order), followed by all Guests (in alphabetical order).
Camera released when muted	When a participant mutes their video, their camera is released and no longer appears as still in use (according to the camera's indicators and the device's OS), thus reassuring users that they are no longer sending video. When video is re-enabled, the camera is requested again. However, this does mean that another application may take over use of the camera while it is muted. This option is enabled by default, but there is a new option to disable this feature via customization, using the stopCameraAsMute setting within defaultUserConfig.	stopCameraAsMute
* Technology preview only

Pexip Infinity v39 changes in functionality

Feature	Description	More information
Deprecation of TLS client certificates by public Certificate Authorities	Public Certificate Authorities are stopping issuing certificates with client authentication EKU (Extended Key Usage) capabilities, due to a change in web browser trusted CA policy. By May 2026, it will be impossible to acquire new certificates with both client and server authentication EKUs from public CAs. Prior to version 39, certificates with client authentication capabilities were required for communicating with the Teams Connector. This requirement has been removed in v39 (see below), and therefore, certificates with client authentication capabilities are now typically not required in most Pexip Infinity deployments. However, in advanced scenarios your Conferencing Nodes' certificates may require a client authentication EKU when responding to SIP/TLS client certificate challenges. Therefore if your environment requires your Conferencing Node certificates to have client (and server) EKU then you will need to manage this in the future through your own private Certificate Authority. Version 39 of Pexip Infinity contains the following related changes: When configuring a Conferencing Node there is a new optional Client TLS certificate setting that may be assigned. This is the TLS certificate to use on this node when responding to SIP/TLS client certificate challenges. If your deployment receives SIP/TLS client certificate challenges then you must assign an appropriate Client TLS certificate to your Conferencing Nodes after upgrading to version 39. When generating a CSR (Certificate Signing Request), only server authentication EKU is now requested by default. You can optionally also request client authentication EKU. Previously all CSRs requested server and client EKU. Teams Connector integrations Customers who use Pexip's Teams Connector will be affected by this change to EKU: In version 38 and earlier, a Teams Connector deployment used TLS certificates with both server and client capabilities for validating device identities (Pexip Infinity nodes and Teams Connectors), known as mutual TLS. Version 39 and later uses a new JWT-based authentication model that does not use mutual TLS. This means that the TLS certificates on Pexip Infinity nodes and Teams Connectors are no longer required to have client capabilities. All customers using Teams Connectors must upgrade to v39 before May 2026. From version 39 onwards, only the following key types are supported in the certificate that is installed on Conferencing Nodes that are used to communicate with a Teams Connector: RSA ECDSA with the following NIST curves: P-256 P-384 P-521 Note that the certificate installed on your Teams Connectors must use RSA keys only.	Managing TLS and trusted CA certificates Network and certificate requirements (Teams Connector)

Feature

Description

More information

Deprecation of TLS client certificates by public Certificate Authorities

Public Certificate Authorities are stopping issuing certificates with client authentication EKU (Extended Key Usage) capabilities, due to a change in web browser trusted CA policy. By May 2026, it will be impossible to acquire new certificates with both client and server authentication EKUs from public CAs.

Prior to version 39, certificates with client authentication capabilities were required for communicating with the Teams Connector. This requirement has been removed in v39 (see below), and therefore, certificates with client authentication capabilities are now typically not required in most Pexip Infinity deployments. However, in advanced scenarios your Conferencing Nodes' certificates may require a client authentication EKU when responding to SIP/TLS client certificate challenges.

Therefore if your environment requires your Conferencing Node certificates to have client (and server) EKU then you will need to manage this in the future through your own private Certificate Authority.

Version 39 of Pexip Infinity contains the following related changes:

When configuring a Conferencing Node there is a new optional Client TLS certificate setting that may be assigned. This is the TLS certificate to use on this node when responding to SIP/TLS client certificate challenges.

If your deployment receives SIP/TLS client certificate challenges then you must assign an appropriate Client TLS certificate to your Conferencing Nodes after upgrading to version 39.
When generating a CSR (Certificate Signing Request), only server authentication EKU is now requested by default. You can optionally also request client authentication EKU. Previously all CSRs requested server and client EKU.

Teams Connector integrations

Customers who use Pexip's Teams Connector will be affected by this change to EKU:

In version 38 and earlier, a Teams Connector deployment used TLS certificates with both server and client capabilities for validating device identities (Pexip Infinity nodes and Teams Connectors), known as mutual TLS.
Version 39 and later uses a new JWT-based authentication model that does not use mutual TLS. This means that the TLS certificates on Pexip Infinity nodes and Teams Connectors are no longer required to have client capabilities.

All customers using Teams Connectors must upgrade to v39 before May 2026.

From version 39 onwards, only the following key types are supported in the certificate that is installed on Conferencing Nodes that are used to communicate with a Teams Connector:

RSA
ECDSA with the following NIST curves:
- P-256
- P-384
- P-521

Note that the certificate installed on your Teams Connectors must use RSA keys only.

Managing TLS and trusted CA certificates

Network and certificate requirements (Teams Connector)

Planned changes / actions required

Feature	Description	More information
OTJ: Microsoft Teams domain change	In Q1 2026 Microsoft will start transitioning Teams links from teams.microsoft.com to teams.cloud.microsoft. One-Touch Join will automatically support invitations using teams.cloud.microsoft after upgrading to v39, but if you use any custom rules that use teams.microsoft.com, you must update them manually to use the new format.
Deprecation of insecure transport for LDAP integrations	The Allow insecure transport option for LDAP integrations (available when configuring LDAP sync sources and LDAP-based authentication for the Administrator interface) is being deprecated and will be removed in a future release. Customers should migrate to TLS-based LDAP integration.	Managing administrator access via LDAP Configuring an LDAP data source
Remove support for VMware ESXi 6.7	Support for VMware ESXi 6.7 will be removed in a future release. When this occurs, Pexip will support VMware installation on ESXi 7.0 and 8.0.	Configuring VMware for Pexip Infinity
Remove support for AVX	In 2027 we intend to cease support for the AVX instruction set on Pexip Infinity Conferencing Nodes. AVX2 and AVX512 will continue to be supported. This means that any Conferencing Nodes based on Intel Sandy Bridge or Ivy Bridge will cease to work. These parts were last sold in 2015 and Intel ended support in 2020. Any newer hardware that has been deployed with a VMware virtual hardware revision older than 11 will need to be updated to a newer virtual hardware revision.
Use of application impersonation in One-Touch Join and Secure Scheduler for Exchange	In a future release we will remove the OAuth (delegate access with a service account) Authentication method option when configuring a Secure Scheduler for Exchange Integration. This is because from February 2025 Microsoft disabled Application Impersonation role assignments to service accounts (for more information, see Microsoft's announcement). Therefore: One-Touch Join customers using O365 with an OTJ Exchange Integration must migrate to using Graph API instead. For full instructions, see Migrating from EWS API to Graph API for One-Touch Join. Secure Scheduler for Exchange customers still using O365 with a service account to access equipment resources and mailboxes must migrate to using app permissions instead. For full instructions, see Configuring Office 365 for scheduling using app permissions.
Secure Scheduler for Exchange: deprecation of {{start_time}} and {{end_time}} variables	In a future release we will remove the {{start_time}} and {{end_time}} variables from the following Secure Scheduler for Exchange jinja2 template fields: Accept new single meeting template Accept edited single meeting template Accept new recurring meeting template Accept edited occurrence template Accept edited recurring meeting template If you are using these variables, please update your templates to remove them.	Working with jinja2 templates
Deprecation of password-based authentication for the Teams Connector CVI application	Certificate-based authentication (CBA) is now the default method to authenticate the Teams Connector CVI application towards MS Graph. You can still use the previous password-based authentication method, but we plan to deprecate it in a future release, thus we recommend using CBA for new installations, or migrating to CBA as soon as practicable when upgrading existing deployments.	Migrating (upgrading) an existing Teams Connector using password-authentication to CBA
Deprecation of v1 legacy themes	We plan to deprecate legacy style "version 1" themes in a future release. If you still use v1 themes you should plan to move to using "version 2" themes instead, which have been available since version 18 of Pexip Infinity.	Customizing conference images and voice prompts using themes