Hitachi Ops Center v10.8.1-00 Release Notes
About this document
This document (RN-99OPS000-17, February 2022) provides late-breaking information about Hitachi Ops Center Common Services v10.8.1-00. It includes information that was not available at the time the technical documentation for this product was published, as well as a list of known problems and solutions.
Intended audience
This document is intended for customers and Hitachi Vantara partners who license and use Hitachi Ops Center.
Accessing product downloads
Product software, drivers, and firmware downloads are available on Hitachi Vantara Support Connect: https://support.hitachivantara.com/.
Log in and select Product Downloads to access the most current downloads, including important updates that may have been made after the release of the product.
About this release
This is a major release that adds new features and resolves multiple known problems.
Product Package Contents
Item | Contents | Revision | Release Type |
Software | Ops Center Common Services | 10.8.1 | Full package |
Product name changes
Previous name | New name |
Hitachi Automation Director | Hitachi Ops Center Automator |
Hitachi Infrastructure Analytics Advisor | Hitachi Ops Center Analyzer |
Hitachi Data Center Analytics | Hitachi Ops Center Analyzer detail view |
Hitachi Storage Advisor | Hitachi Ops Center Administrator |
Hitachi Configuration Manager | Hitachi Ops Center API Configuration Manager |
Hitachi Data Instance Director | Hitachi Ops Center Protector |
Management software products and documentation
Hitachi Ops Center v10.8.1-00 includes the following management software components:
· Hitachi Ops Center Common Services v10.8.1
· Hitachi Ops Center Automator v10.8.1
· Hitachi Ops Center Analyzer v10.8.1
· Hitachi Ops Center API Configuration Manager v10.8.1
· Hitachi Ops Center Protector v7.3.5
· Hitachi Ops Center Administrator v10.8.1
This release note provides information for the Hitachi Ops Center Common Services. For Information on installing, configuring, and using each management software product, see the product documentation located on Hitachi Vantara Support Connect:
https://knowledge.hitachivantara.com/Documents/Management_Software/Ops_Center
New features and important enhancements
10.8.1
Features and enhancements | Overview |
New OS support | The Ops Center OVA supports Oracle Linux 8.4. |
The Express installer supports: · Oracle Linux 7.5 - 7.9 · Oracle Linux 8.1, 8.2, and 8.4 | |
Common Services supports Active Directory and Active Directory Federation Services on Windows Server 2022. | |
Express installer improvements | The Express installer automatically installs Podman. |
SSL setup command (cssslsetup) improvements | · The cssslsetup command supports SSL settings for On-demand real time monitoring in Analyzer detail view. · The cssslsetup command supports client settings for Analyzer viewpoint. |
New browser support | Common Services supports Microsoft Edge. |
Warning banner improvements | The warning banner message length has been expanded to 4096 bytes. |
10.8.0
Features and enhancements | Overview |
New OS support | Common Services supports: · Red Hat Enterprise Linux 8.1, 8.2, and 8.4 · Oracle Linux 8.1, 8.2, and 8.4 |
LDAP server support | Common Services supports user authentication by using LDAP server. |
Filtering function | The filtering function in the product screen has been improved. |
SSL setup command (cssslsetup) improvements | The cssslsetup command supports SSL settings for real time data collection in Analyzer detail view. |
New installer support | Ops Center now includes an Express installer for Administrator, Protector, and Common Services. |
System requirements
Ops Center Common Services
Item | Requirement | |
Supported OS | · Red Hat Enterprise Linux (RHEL) 7.5-7.9, 8.1, 8.2, 8.4 (x64) · Oracle Linux (OL) 7.5-7.9, 8.1, 8.2, 8.4 (x64) Note: New installations on RHEL8.x/OL8.x are supported. In-place OS upgrades to RHEL8.x/OL8.x are not currently supported. You cannot complete a data-in-place upgrade for Common Services data when moving from 7.x to 8.x. | |
Supported client OS / browser | · IE (11.0) · Chrome (latest version) · Firefox (ESR91) · Edge (latest version) | |
Amazon Corretto | 11.0.13 | |
PostgreSQL | postgresql11 11.14 postgresql11-libs 11.14 postgresql11-server 11.14 | |
Processor | Dual-Core processor | |
Physical memory | 4 GB | |
Virtual memory | 2.5GB | |
Disk space | Common-Services-installation-directory | 1,411 MB |
user-data-directory | 124 MB | |
log-directory | 1,543 MB | |
/var/tmp | 3,072 KB | |
/tmp | 3,072 KB | |
Required libraries | libicu.x86_64 perl.x86_64 | |
Supported cipher suites | ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-CHACHA20-POLY1305 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-CHACHA20-POLY1305 |
General Precautions
IPv6 is not supported
Common Services doesn't support IPv6 and doesn't validate input values for IP addresses in commands. Therefore, ensure that you only enter IPv4 addresses.
Resolved Problems
10.8.1
Defect ID | Problems |
64684 | The number of users output by the "Pre-check the number of imported users" option does not match the number of users imported by the "Sync users" button. |
64872 | On the Data center screen, where the city should be displayed as "Shimonoseki (Yamaguchi, Japan)", it is displayed as "Shimonoseki (Fukuoka, Japan)". |
65545 | After long-term operation of Common Services, the Ops Center Portal and single sign-on is unavailable. |
65959 | In an environment deployed by using the Analyzer viewpoint OVF, the access URL for Common Services set by the |
65780 | Even when the "-enableip true" option is specified in the cschgconnect command, you may not be able to access the Common Services portal by host name or IP address after restarting the OS. |
66124 | The csportal service fails to start after an upgrade or overwrite installation of Common Services. |
64084 | Hitachi Ops Center Common Services no longer contains the following vulnerability: CVE-2021-3637 |
10.8.0
Defect ID | Problems |
62742 | Even if the virtual memory free size is less than the size required by Common Services, it is installed. |
63566 | Several warning messages about the identity provider are output when starting Common Services. |
59099 | Hitachi Ops Center Common Services no longer contains the following vulnerabilities: CVE-2020-10770, CVE-2020-14302, CVE-2020-15522, CVE-2020-1695, CVE-2020-1723, CVE-2020-1725, CVE-2020-25711, CVE-2020-27838, CVE-2020-28052, CVE-2020-28491, CVE-2021-20195, CVE-2021-20202, CVE-2021-20222, CVE-2021-20262, CVE-2021-21290, CVE-2021-22696, CVE-2021-27568, CVE-2021-30640, CVE-2021-33037, CVE-2021-3424, CVE-2021-3712 |
Known Problems
Login failures for users in the user directory
When a login fails for a user in the user directory due to a connection timeout or the user reaches the maximum number of failed login attempts, the imported user may be deleted.
This problem occurs when all of the following conditions exist:
· Brute force prevention is enabled in your password policy.
· You are using a user directory service.
· The directory service type is Other and the authentication protocol is LDAP.
· There are users imported from the user directory service.
· The number of consecutive login failures by user due to a timeout or failed login attempts reaches the maximum number specified in the password policy.
Installation notes
Upgrading Ops Center API Configuration Manager after an OVA installation
After an Ops Center OVA installation, you must update API Configuration Manager to the latest version by using the installer. To get the latest API Configuration Manager version (10.8.1-01 - available 2/28):
1) Go to the Hitachi Vantara Software Downloads page.
2) Select Ops Center Installation Media.
3) Scroll down to API Configuration Management Installation Media 10.8.1-01 (Linux & Windows).
4) Click Download.
Upgrade the software by using the installer as described in the Ops Center API Configuration Manager documentation.
Usage Precautions
About Oracle Linux
Hitachi virtual appliances are designed to simplify the software deployment process and include a publicly available operating system. Managing and updating the operating system is the sole responsibility of the customer. We recommend that you regularly update the operating system to prevent security issues.
NOTE: The preconfigured media includes Oracle Linux. You can purchase support through Hitachi or through Oracle.
Change the default setting for user directories
The Ops Center Portal retains existing groups and role settings when upgrading. If you set up User federation in v10.2.0 or earlier and perform an upgrade, the groups and roles settings behave as follows:
· The “Add all users under Base DN to opscenter-users group" option is enabled by default.
· Existing groups in the Group entry list are not assigned the opscenter-user role unless you do so manually.
If you disable “Add all users under Base DN to opscenter-users group", no AD users can log in to the Portal even if they are explicit members of a group in the Group entry list. Before disabling this option, you should assign the opscenter-user role to all AD groups by opening the Users tab and selecting Groups from the Asset type list. For more details, see "Assigning Portal-level roles to Ops Center groups" in the Ops Center Portal Help.
Mount option for /var/tmp
When installing Common Services, do not configure the noexec mount option for the file system including the /var/tmp directory.
SSL setup tool (cssslsetup) restrictions
You cannot use the cssslsetup
command to configure SSL for Analyzer and Automator if they are installed on the same management server as Hitachi Command Suite products. You can use cssslsetup for other Ops Center products on the same server, but you must configure SSL settings manually for Analyzer and Automator as described in the documentation.
Express installer: Settings to keep SSH connections alive
When installing Ops Center products by using the Express installer, an SSH session may disconnect and the installation may fail if all the following conditions exist:
· The installer is run from a remote SSH login.
· In the /etc/ssh/sshd_config
file, the value for ClientAliveCountMax is 0 and the value for ClientAliveInterval is shorter than the time required to install Ops Center products.
· The heartbeat (keep-alive) function for the SSH client software is not enabled.
Note: For RHEL/OL8, "ClientAliveCountMax 0" and "ClientAliveInterval 300" are set when the OS Security Profile (CIS) is applied.
To avoid this issue, set a sufficient interval for ClientAliveCountMax and ClientAliveInterval, or enable the heartbeat function for the SSH client software.
Installing Protector by using Express installer
When Protector is installed to RHEL8.x/OL8.x by using the Express installer, of the Administrator service is restarted.
Documentation
This section lists the user documentation. Product documentation is available on Hitachi Vantara Support Connect: https://knowledge.hitachivantara.com/Documents
Check this site for the most current documentation, including important updates that may have been made after the release of the product.
Document name | Document number | Issue date |
Hitachi Ops Center Installation and Configuration Guide | MK-99OPS001-13 | February 2022 |
Hitachi Ops Center Common Services REST API Reference Guide | MK-99OPS003-04 | October 2021 |
Copyrights and licenses
© 2022 Hitachi, Ltd. All rights reserved.
No part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including copying and recording, or stored in a database or retrieval system for commercial purposes without the express written permission of Hitachi, Ltd., or Hitachi Vantara LLC (collectively "Hitachi"). Licensee may make copies of the Materials provided that any such copy is (i) created as an essential step in utilization of the Software as licensed and is used in no other manner; or (ii) used for archival purposes. Licensee may not make any other copies of the Materials. "Materials" mean text, data, photographs, graphics, audio, video and documents.
Hitachi reserves the right to make changes to this Material at any time without notice and assumes no responsibility for its use. The Materials contain the most current information available at the time of publication.
Some of the features described in the Materials might not be currently available. Refer to the most recent product announcement for information about feature and product availability, or contact Hitachi Vantara LLC at https://support.hitachivantara.com/e...ontact-us.html.
Notice: Hitachi products and services can be ordered only under the terms and conditions of the applicable Hitachi agreements. The use of Hitachi products is governed by the terms of your agreements with Hitachi Vantara LLC.
By using this software, you agree that you are responsible for:
1) Acquiring the relevant consents as may be required under local privacy laws or otherwise from authorized employees and other individuals; and
2) Verifying that your data continues to be held, retrieved, deleted, or otherwise processed in accordance with relevant laws.
Notice on Export Controls. The technical data and technology inherent in this Document may be subject to U.S. export control laws, including the U.S. Export Administration Act and its associated regulations, and may be subject to export or import regulations in other countries. Reader agrees to comply strictly with all such regulations and acknowledges that Reader has the responsibility to obtain licenses to export, re-export, or import the Document and any Compliant Products.
Hitachi and Lumada are trademarks or registered trademarks of Hitachi, Ltd., in the United States and other countries.
AIX, AS/400e, DB2, Domino, DS6000, DS8000, Enterprise Storage Server, eServer, FICON, FlashCopy, GDPS, HyperSwap, IBM, Lotus, MVS, OS/390, PowerHA, PowerPC, RS/6000, S/390, System z9, System z10, Tivoli, z/OS, z9, z10, z13, z14, z/VM, and z/VSE are registered trademarks or trademarks of International Business Machines Corporation.
Active Directory, ActiveX, Bing, Edge, Excel, Hyper-V, Internet Explorer, the Internet Explorer logo, Microsoft, the Microsoft Corporate Logo, MS-DOS, Outlook, PowerPoint, SharePoint, Silverlight, SmartScreen, SQL Server, Visual Basic, Visual C++, Visual Studio, Windows, the Windows logo, Windows Azure, Windows PowerShell, Windows Server, the Windows start button, and Windows Vista are registered trademarks or trademarks of Microsoft Corporation. Microsoft product screen shots are reprinted with permission from Microsoft Corporation.
All other trademarks, service marks, and company names in this document or website are properties of their respective owners.
Copyright and license information for third-party and open source software used in Hitachi Vantara products can be found at https://www.hitachivantara.com/en-us...any/legal.html.