Mattermost V11: Powering More Mission-Critical Collaboration
Earlier this summer, we introduced Mattermost Enterprise Advanced — our most powerful offering yet, purpose-built for multi-domain secure operations. Enterprise Advanced extends the Mattermost Intelligent Mission Environment with Agentic AI, workflow automations, advanced security controls, , designed to help defense, government, and critical infrastructure teams operate with confidence in the most demanding environments.
Mattermost Enterprise Advanced incorporates sophisticated, policy-based Zero Trust access controls for channels and files, enabling dynamic, granular access based on user properties and device/network data. Additional hardening was added with a secure file viewer, enabling in-app viewing of files like PDFs, images, and videos without downloading them to the device. And channel banners were added to help channel members avoid data spillage in channels that aren’t intended for classified or sensitive information.
But Enterprise Advanced was never meant to be a one-time launch. It represents our long-term commitment to evolving alongside the missions we serve. With each release, we’re adding new capabilities that help organizations stay ahead of growing complexity, strengthen security, and accelerate decision-making where every second counts.
That’s why we’re excited to share Mattermost v11 — a release that delivers six powerful new features across our platform, reinforcing our mission to provide secure, resilient, and intelligent collaboration for the world’s most critical operations.
What’s New in Mattermost v11
Zero Trust Controls
Enterprise Advanced now offers even deeper integration of system-wide and channel-level policies. This ensures Zero Trust by design, giving mission owners the confidence to enforce clearance-based discussions, temporary project access, or partner collaboration with precision.
Channel-Specific Access Rules
Give channel owners more control while keeping security front and center. Channel Admins can now set attribute-based access rules for channels, which is perfect for project-based or clearance-based collaboration.
Enhanced User Attributes
Collaboration works best when teams have the right context. v11 gives system admins more flexibility to define and manage user attributes, like skills or clearance levels, synced with LDAP/SAML. Admins can decide which fields stay locked down and which users can update themselves.
Attribute-based access control (ABAC) enables channel admins to enforce dynamic, policy-based access using user attributes such as clearance level, department, location, and device posture. This goes far beyond traditional role-based access control (RBAC), allowing for need-to-know segmentation. Only users whose attributes match the channel’s policy can view or participate.
Mobile Secure File Viewer
Enables view-only access to sensitive files within the mobile app, preventing downloads or unauthorized sharing.
Inline Secure Viewing: PDF documents—including password-protected ones—can be viewed securely within the mobile app. The viewer disables text selection, copy, sharing, and external link navigation, ensuring content remains protected.
Edit Mobile File Attachments: Users can now modify attachments directly from mobile.
FIPS-Compliant Builds
For organizations with strict compliance requirements, v11 introduces FIPS 140-3 and DISA STIG compliant builds. We build approved cryptography and hardened container images, ensuring your deployments meet the highest security standards.
Mattermost now offers FIPS 140-3 validated cryptography across its platform, enabling secure deployment in U.S. federal, defense, and regulated environments.
- Core FIPS Modules: All cryptographic operations use FIPS-approved algorithms via OpenSSL and CGO bindings.
- Container Variants: Each release (starting with v11) includes both FIPS and non-FIPS Docker images.
STIG Assurance
Mattermost is rolling out STIG-compliant container images as part of its broader federal compliance initiative. These containers are designed to meet the Security Technical Implementation Guide (STIG) standards required by the U.S. Department of Defense (DoD) and other federal agencies, and include:
- STIG Container Images: Hardened Docker images that include Mattermost Server, Playbooks, Boards, Agents, Push Proxy, and Operator—all configured to meet STIG and FIPS requirements.
- Chainguard Partnership: Mattermost is collaborating with Chainguard to deliver minimal, 0-CVE, FIPS/STIG-compliant containers. These images are built on secure-by-design principles and include SBOMs (Software Bill of Materials) for auditability.
Expanded Permalinks
Quickly share and navigate to the exact conversation that matters. Permalinks let you jump straight to a specific team, channel, or message from both desktop and mobile — making it faster to align and act in the moment.
Playbooks on the Go
Complex operations don’t stop when you leave your desk. With v11, you can now run and update playbooks directly from mobile. Check off tasks, provide status updates, or assign ownership on the move.
Mobile playbooks bring real-time operational workflows directly to mobile devices—ideal for teams operating in disconnected, denied, intermittent, or limited (DDIL) environments. Users can:
- Join playbook run channels
- View and complete tasks
- Post status updates
- Finish runs—all from their phone or tablet
This enables field operators, incident responders, and mission leads to stay aligned and act quickly without needing desktop access.
Built for What’s Next
Mattermost v11 continues the journey we started with Enterprise Advanced: giving mission-driven teams the tools to operate securely, collaborate effectively, and adapt quickly in the most challenging conditions.
From Zero Trust security to sovereign data protection, from air-gapped workflows to AI-ready automation, Mattermost is committed to being the collaboration backbone for those who cannot afford to fail. Learn more about Mattermost Enterprise Advanced today and see how it can support your mission.
