Hitachi Ops Center v10.8.2 Release Notes
About this document
This document (RN-99OPS000-18, May 2022) provides late-breaking information about Hitachi Ops Center Common Services v10.8.2-00. It includes information that was not available at the time the technical documentation for this product was published, as well as a list of known problems and solutions.
Intended audience
This document is intended for customers and Hitachi Vantara partners who license and use Hitachi Ops Center.
Accessing product downloads
Product software, drivers, and firmware downloads are available on Hitachi Vantara Support Connect: https://support.hitachivantara.com/.
Log in and select Product Downloads to access the most current downloads, including important updates that may have been made after the release of the product.
About this release
This is a major release that adds new features and resolves multiple known problems.
Product Package Contents
Item |
Contents |
Revision |
Release Type |
Software |
Ops Center Common Services |
10.8.2 |
Full package |
Product name changes
Previous name |
New name |
Hitachi Automation Director |
Hitachi Ops Center Automator |
Hitachi Infrastructure Analytics Advisor |
Hitachi Ops Center Analyzer |
Hitachi Data Center Analytics |
Hitachi Ops Center Analyzer detail view |
Hitachi Storage Advisor |
Hitachi Ops Center Administrator |
Hitachi Configuration Manager |
Hitachi Ops Center API Configuration Manager |
Hitachi Data Instance Director |
Hitachi Ops Center Protector |
Management software products and documentation
Hitachi Ops Center v10.8.2-00 includes the following management software components:
· Hitachi Ops Center Common Services v10.8.2
· Hitachi Ops Center Automator v10.8.2
Ops Center Automator 10.8.2-01 release resolves a known problem. If you install by using the consolidated OVA, you must upgrade Automator to 10.8.2-01 by using the product installer to get the latest defect fix.
· Hitachi Ops Center Analyzer v10.8.2
· Hitachi Ops Center API Configuration Manager v10.8.2
· Hitachi Ops Center Protector v7.3.6
· Hitachi Ops Center Administrator v10.8.2
This release note provides information for the Hitachi Ops Center Common Services. For Information on installing, configuring, and using each management software product, see the product documentation located on Hitachi Vantara Support Connect:
https://knowledge.hitachivantara.com/Documents/Management_Software/Ops_Center
New features and important enhancements
10.8.2
Features and enhancements |
Overview |
New product support |
The Express installer now supports: · Ops Center Analyzer · Ops Center Analyzer detail view |
Analyzer detail view or Analyzer probe single sign-on support |
Users can now access these products by using single sign-on from the Ops Center portal: · Ops Center Analyzer detail view · Ops Center Analyzer probe |
SSL setup command (cssslsetup) improvements |
The cssslsetup command now supports SSL single sign-on settings for Analyzer detail view. |
Express installer improvements |
When newly installing products, the Express installer supports product registration in environments where Common Services is already installed. |
10.8.1
Features and enhancements |
Overview |
New OS support |
The Ops Center OVA supports Oracle Linux 8.4. |
The Express installer supports: · Oracle Linux 7.5 - 7.9 · Oracle Linux 8.1, 8.2, and 8.4 |
|
Common Services supports Active Directory and Active Directory Federation Services on Windows Server 2022. |
|
Express installer improvements |
The Express installer automatically installs Podman. |
SSL setup command (cssslsetup) improvements |
· The cssslsetup command supports SSL settings for On-demand real time monitoring in Analyzer detail view. · The cssslsetup command supports client settings for Analyzer viewpoint. |
New browser support |
Common Services supports Microsoft Edge browser. |
Warning banner improvements |
The warning banner message length has been expanded to 4096 bytes. |
10.8.0
Features and enhancements |
Overview |
New OS support |
Common Services supports: · Red Hat Enterprise Linux 8.1, 8.2, and 8.4 · Oracle Linux 8.1, 8.2, and 8.4 |
LDAP server support |
Common Services supports user authentication by using LDAP server. |
Filtering function |
The filtering function in the product screen has been improved. |
SSL setup command (cssslsetup) improvements |
The cssslsetup command supports SSL settings for real time data collection in Analyzer detail view. |
New installer support |
Ops Center now includes an Express installer for Administrator, Protector, and Common Services. |
System requirements
Ops Center Common Services
Item |
Requirement |
|
Supported OS |
· Red Hat Enterprise Linux (RHEL) 7.5-7.9, 8.1, 8.2, 8.4 (x64) · Oracle Linux (OL) 7.5-7.9, 8.2, 8.4 (Unbreakable Enterprise Kernel) (x64) · Oracle Linux (OL) 7.5-7.9, 8.1, 8.2, 8.4 (Red Hat Compatible Kernel) (x64) Note: New installations on RHEL8.x/OL8.x are supported. In-place OS upgrades to RHEL8.x/OL8.x are not currently supported. You cannot complete a data-in-place upgrade for Common Services data when moving from 7.x to 8.x. |
|
Supported client OS / browser |
· IE (11.0) · Chrome (latest version) · Firefox (ESR91) · Edge (latest version) |
|
Amazon Corretto |
11.0.14 |
|
PostgreSQL |
postgresql11 11.15 postgresql11-libs 11.15 postgresql11-server 11.15 |
|
Processor |
Dual-Core processor |
|
Physical memory |
4 GB |
|
Virtual memory |
2.5GB |
|
Disk space |
Common-Services-installation-directory |
1,411 MB |
user-data-directory |
124 MB |
|
log-directory |
1,543 MB |
|
/var/tmp |
3,072 KB |
|
/tmp |
3,072 KB |
|
Required libraries |
libicu.x86_64 perl.x86_64 libselinux-utils policycoreutils-python (for RHEL7.x/OL7.x) policycoreutils-python-utils (for RHEL8.x/OL8.x) |
|
Supported cipher suites |
ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-CHACHA20-POLY1305 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-CHACHA20-POLY1305 |
General Precautions
IPv6 is not supported
Common Services doesn't support IPv6 and doesn't validate input values for IP addresses in commands. Therefore, ensure that you only enter IPv4 addresses.
Resolved Problems
10.8.2
Defect ID |
Problems |
46113 |
The installation process hangs when installing Common Services in an environment where SIGPIPE is ignored. |
65992 |
The installation fails if SELinux context is different from /opt. |
66842 |
Warning banner configuration file is not backed up. |
67163 |
In an Oracle JDK 8 environment, SSL settings for Ops Center Analyzer detail view by using the cssslsetup command fails. |
67273 |
The csgetras command hangs when there are too many disks to get information from. |
67479 |
When setting the Ops Center Analyzer detail view client with the cssslsetup command, the password setting is prompted in both Active Directory and RAID Agent. Importing the truststore of the server certificate for RAID Agent fails if different passwords are entered for Active Directory and RAID Agent. |
67480 |
When upgrading or overwriting Common Services using the installer in an Hitachi Ops Center Analyzer viewpoint OVF environment, a 404 (Not Found) error occurs in the Ops Center Portal. |
67495 |
Express installer fails even if the prerequisite package rh-python36 of Ops Center Administrator is installed successfully with Express installer. |
65909 |
Hitachi Ops Center Common Services no longer contains the following vulnerabilities: CVE-2019-10172, CVE-2020-27218, CVE-2021-4133, CVE-2021-22060, CVE-2021-22096, CVE-2021-30468, CVE-2021-37136, CVE-2021-37137, CVE-2021-37714, CVE-2021-40690, CVE-2021-42575, CVE-2022-22968 |
10.8.1
Defect ID |
Problems |
64684 |
The number of users output by the "Pre-check the number of imported users" button does not match the number of users imported by the "Sync users" button. |
64872 |
On the Data center screen, where the city should be displayed as "Shimonoseki (Yamaguchi, Japan)", it is displayed as "Shimonoseki (Fukuoka, Japan)". |
65545 |
After long-term operation of Common Services, the Ops Center Portal and single sign-on is unavailable. |
65959 |
In an environment deployed by using the Analyzer viewpoint OVF, the access URL for Common Services set by the cschgconnect command is changed from host name to IP address after restarting Common Services. |
65780 |
Even when the "-enableip true" option is specified in the cschgconnect command, you may not be able to access the Common Services portal by host name or IP address after restarting OS. |
66124 |
The csportal service fails to start after an upgrade or overwrite installation of Common Services. |
64084 |
Hitachi Ops Center Common Services no longer contains the following vulnerability: CVE-2021-3637 |
10.8.0
Defect ID |
Problems |
62742 |
Even if the virtual memory free size is less than the size required by Common Services, it is installed. |
63566 |
Several warning messages about the identity provider are output when starting Common Services. |
59099 |
Hitachi Ops Center Common Services no longer contains the following vulnerabilities: CVE-2020-10770, CVE-2020-14302, CVE-2020-15522, CVE-2020-1695, CVE-2020-1723, CVE-2020-1725, CVE-2020-25711, CVE-2020-27838, CVE-2020-28052, CVE-2020-28491, CVE-2021-20195, CVE-2021-20202, CVE-2021-20222, CVE-2021-20262, CVE-2021-21290, CVE-2021-22696, CVE-2021-27568, CVE-2021-30640, CVE-2021-33037, CVE-2021-3424, CVE-2021-3712 |
Known Problems
Overwrite installations of Ops Center Analyzer detail view
If you try to complete an overwrite installation of Ops Center Analyzer detail view with the Express installer, "Completed successfully" is displayed, but because overwrite installations are not supported for Analyzer detail view, the installation is skipped by the Express Installer.
If you change the Ops Center Portal port number to 8443, you cannot access the Ops Center Portal login window
If you change the Ops Center Portal port number to 8443, you cannot access the Ops Center Portal login window.
This occurs when any of the following conditions are met:
· You specify 8443 as the port number of the access URL when installing Common Services.
· Your run the "cschgconnect.sh" command with "-p 8443" option.
Use a port number other than 8443 for the Ops Center Portal.
Installation notes
Ops Center Automator 10.8.2-01 release resolves a known problem. If you install by using the consolidated OVA, you must upgrade Automator to 10.8.2-01 by using the product installer to get the latest defect fix.
Usage Precautions
About Oracle Linux
Hitachi virtual appliances are designed to simplify the software deployment process and include a publicly available operating system. Managing and updating the operating system is the sole responsibility of the customer. We recommend that you regularly update the operating system to prevent security issues.
NOTE: The preconfigured media includes Oracle Linux. You can purchase support through Hitachi or through Oracle.
Change the default setting for user directories
The Ops Center Portal retains existing groups and role settings when upgrading. If you set up User federation in v10.2.0 or earlier and perform an upgrade, the groups and roles settings behave as follows:
· The “Add all users under Base DN to opscenter-users group" option is enabled by default.
· Existing groups in the Group entry list are not assigned the opscenter-user role unless you do so manually.
If you disable “Add all users under Base DN to opscenter-users group", no AD users can log in to the Portal even if they are explicit members of a group in the Group entry list. Before disabling this option, you should assign the opscenter-user role to all AD groups by opening the Users tab and selecting Groups from the Asset type list. For more details, see "Assigning Portal-level roles to Ops Center groups" in the Ops Center Portal Help.
Mount option for /var/tmp
When installing Common Services, do not configure the noexec mount option for the file system including the /var/tmp directory.
SSL setup tool (cssslsetup) restrictions
You cannot use cssslsetup to configure SSL for Analyzer and Automator if they are installed on the same management server as Hitachi Command Suite products. You can use cssslsetup for other Ops Center products on the same server, but you must configure SSL settings manually for Analyzer and Automator as described in the documentation.
Settings to keep SSH connections alive
An SSH session may disconnect when installing Ops Center products by using the Express installer and the installation may fail if all the following conditions exist:
· The installer is run from a remote SSH login.
· In the /etc/ssh/sshd_config
file, the value for ClientAliveCountMax is 0 and the value for ClientAliveInterval is shorter than the time required to install Ops Center products.
· The heartbeat (keep-alive) function for the SSH client software is not enabled.
Note: For RHEL/OL8, "ClientAliveCountMax 0" and "ClientAliveInterval 300" are set when the OS Security Profile (CIS) is applied.
To avoid this issue, set a sufficient interval for ClientAliveCountMax and ClientAliveInterval, or enable the heartbeat for the SSH client software.
Installing Protector by using Express installer
When Protector is installed to RHEL8.x/OL8.x by using the Express installer, service of Administrator is restarted.
When the Ops Center Portal authentication key is updated, Analyzer detail view and probe status becomes Unknown and you cannot use single sign-on
When the Common Services authentication key is updated either automatically (default: 180 days) or manually, Analyzer detail view and probe status becomes Unknown and you cannot use single sign-on to access Analyzer detail view and probe.
If this symptom occurs, re-register the Analyzer detail view and probe to Common Services by using the setupcommonservice command.
You can check the authentication key update interval by referring to the authentication key setting page of the Ops Center Portal.
Documentation
This section lists the user documentation. Product documentation is available on Hitachi Vantara Support Connect: https://knowledge.hitachivantara.com/Documents
Check this site for the most current documentation, including important updates that may have been made after the release of the product.
Document name |
Document number |
Issue date |
Hitachi Ops Center Installation and Configuration Guide |
MK-99OPS001-14 |
May 2022 |
Hitachi Ops Center Common Services REST API Reference Guide |
MK-99OPS003-04 |
October 2021 |
Copyrights and licenses
© 2022 Hitachi, Ltd. All rights reserved.
No part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including copying and recording, or stored in a database or retrieval system for commercial purposes without the express written permission of Hitachi, Ltd., or Hitachi Vantara LLC (collectively "Hitachi"). Licensee may make copies of the Materials provided that any such copy is (i) created as an essential step in utilization of the Software as licensed and is used in no other manner; or (ii) used for archival purposes. Licensee may not make any other copies of the Materials. "Materials" mean text, data, photographs, graphics, audio, video and documents.
Hitachi reserves the right to make changes to this Material at any time without notice and assumes no responsibility for its use. The Materials contain the most current information available at the time of publication.
Some of the features described in the Materials might not be currently available. Refer to the most recent product announcement for information about feature and product availability, or contact Hitachi Vantara LLC at https://support.hitachivantara.com/e...ontact-us.html.
Notice: Hitachi products and services can be ordered only under the terms and conditions of the applicable Hitachi agreements. The use of Hitachi products is governed by the terms of your agreements with Hitachi Vantara LLC.
By using this software, you agree that you are responsible for:
1) Acquiring the relevant consents as may be required under local privacy laws or otherwise from authorized employees and other individuals; and
2) Verifying that your data continues to be held, retrieved, deleted, or otherwise processed in accordance with relevant laws.
Notice on Export Controls. The technical data and technology inherent in this Document may be subject to U.S. export control laws, including the U.S. Export Administration Act and its associated regulations, and may be subject to export or import regulations in other countries. Reader agrees to comply strictly with all such regulations and acknowledges that Reader has the responsibility to obtain licenses to export, re-export, or import the Document and any Compliant Products.
Hitachi and Lumada are trademarks or registered trademarks of Hitachi, Ltd., in the United States and other countries.
AIX, AS/400e, DB2, Domino, DS6000, DS8000, Enterprise Storage Server, eServer, FICON, FlashCopy, GDPS, HyperSwap, IBM, Lotus, MVS, OS/390, PowerHA, PowerPC, RS/6000, S/390, System z9, System z10, Tivoli, z/OS, z9, z10, z13, z14, z/VM, and z/VSE are registered trademarks or trademarks of International Business Machines Corporation.
Active Directory, ActiveX, Bing, Edge, Excel, Hyper-V, Internet Explorer, the Internet Explorer logo, Microsoft, the Microsoft Corporate Logo, MS-DOS, Outlook, PowerPoint, SharePoint, Silverlight, SmartScreen, SQL Server, Visual Basic, Visual C++, Visual Studio, Windows, the Windows logo, Windows Azure, Windows PowerShell, Windows Server, the Windows start button, and Windows Vista are registered trademarks or trademarks of Microsoft Corporation. Microsoft product screen shots are reprinted with permission from Microsoft Corporation.
All other trademarks, service marks, and company names in this document or website are properties of their respective owners.
Copyright and license information for third-party and open source software used in Hitachi Vantara products can be found at https://www.hitachivantara.com/en-us...any/legal.html or https://knowledge.hitachivantara.com...ource_Software.