Suite Admin 5.1.0 Release Notes

Release Date

First Published: August 16, 2019

Updated:

  • September 17, 2019: Enhanced the Documentation section to include a list of pages that were updated. 

Installation

CloudCenter Suite 5.1.0 is available as installers for ALL components for all supported clouds. Contact the CloudCenter Suite Support team for additional details.

Updating Modules

While you can update just the modules without upgrading the Kubernetes cluster, you will continue to see the new CloudCenter Suite 5.1 features for each module. See Update Module for additional details.

  • Before updating any module, verify that you have twice the required CPU/Memory in your cluster. A module-update scenario requires additional resources for the old pod to continue running until the new pod initializes and takes over. This additional resource requirement is temporary and only required while a module update is in progress. After the module is updated, the additional resources are no longer needed.

  • You must update the Suite Admin module before you update any other CloudCenter Suite module. 

  • Update only one module at at time. If you simultaneously update more than one module, your update process may fail due to limited resource availability. See Prepare Infrastructure for additional context.

  • You may see one or more error messages during the update process. Be aware that these messages will not affect the update itself.

See SaaS Access for FAQs on updating SaaS environments.

Architecture

The load balancer that was used for the master nodes in CloudCenter Suite 5.0.x is no longer required in CloudCenter Suite 5.1.0.

Clouds

  • vSphere and OpenStack:

    • OVA and QCOW2 Images:

      • In prior releases, the same OVA image for vSphere and QCOW2 image for OpenStack was used for both the installer and the Kubernetes cluster that is launched by the installer. Effective CloudCenter Suite 5.1.0, different images will be used for this purpose.

      • The installer includes a default Kubernetes cluster image (called, CCS-version-Base-Image) with a configurable option to override the use of this default image. See VMware vSphere Installation or OpenStack Installation for additional context. This is a change!

    • Proxy Configuration Private Clouds:

      • Installers support proxy configuration with two additional fields, HTTP Proxy and HTTPS Proxy, to configure the IP address and port of your proxy server.

      • If you are behind a proxy environment, you must provide the proxy settings in the installers and you will not need an offline repository.

      • See Offline Repository for additional details.

  • vSphere:

    • Take Me to Suite Admin Link:

      • In CloudCenter Suite 5.0, if you select vSphere DHCP IP Allocation mode, once the installation completes, you see the Suite Admin URL link which provides the IP address of one of the Masters. This IP address cannot be controlled by the user.

      • In CloudCenter Suite 5.1, configure the IP address of the Master VIP for the Suite Admin URL link. This is a change!

    • SSH Key and Username:

      •  In CloudCenter Suite 5.0, this field value was dynamically assigned.

      • In CloudCenter Suite 5.1, you can provide your own SSH key and username. This is a change!

  • OpenStack:

    • SSH Key:

      • In CloudCenter Suite 5.0, this field value was dynamically assigned.

      • In CloudCenter Suite 5.1, you can provide your own SSH key. This is a change!

Administration 

As a Suite Admin administrator, you can perform the following additional tasks in CloudCenter Suite 5.1:

  • Backup and Restore:

    • The CloudCenter Suite uses the latest cloud/cloud account and bucket configurations to retrieve the list of existing backups. This option is displayed in the table in the Admin > Backup page (under the Data Recovery section in the Suite Admin UI). You can backup data to Google Cloud Storage or AWS S3. See Backup for additional details

    • To restore data, the CloudCenter Suite requires that you launch a new cluster. This is a manual process. See Restore for additional details.

    • For isolated, air gap, environments, that do not have internet access, or to back up to a local system, a manual backup procedure is available – see Isolated Environments for additional details.

  • Last Login Indicator:

    • The log session history information for each CloudCenter Suite session provides details on the last login time, the type of login, and the location (IP address) of the person logging into the session.

    • The number of failed attempts provides a point of verification and allows the user to notice unauthorized use of the CloudCenter Suite system at any given time.

    • See Suite Admin Dashboard > Last Login Indicator for additional details.

  • Impersonate a User

    • User impersonation allows you to temporarily sign into any CloudCenter Suite module as a different user.

    • Suite and tenant administrators can impersonate all other users in their tenants and sub-tenants and take any action, regardless of the permission level of the user being impersonated.

    • See Create and Manage Users > Impersonate User for additional details.

  • Archive Logs on the AWS S3 Region:

    • By default, raw log data is collected by the Kubernetes pod and saved to a temporary location on the CloudCenter Suite server.

    • The temporarily stored logs on the CloudCenter Suite server are automatically purged. This log file location is not configurable from the CloudCenter Suite.

    • If you configure an archive location for your AWS S3 region, the CloudCenter Suite logs can also be saved to the AWS S3 region besides the temporary location on the CloudCenter Suite server. If so, you can enable the archive of log files from the Suite Admin UI to the AWS S3 region using the S3 bucket name and AWS credentials.

    • See Log Archive for additional details.

  • Expanded List of Currency Codes:

    • The Suite Admin now offers additional currency code options.

    • See Currency Conversion for a complete list.

Module Management

No updates

Smart Software Licensing

No updates

Suite Admin Dashboard

CloudCenter Suite introduces a Notifications feature that is accessible from any page and can be triggered at any time by clicking the bell icon.

  • This feature is available to be viewed in all modules.

  • The notification content is only triggered by the Action Orchestrator and Cost Optimizer modules.

  • See Suite Admin Dashboard > Notifications for additional details.

User Tenant Management

Users can perform the following additional tasks in CloudCenter Suite 5.1:

  • Standard Log Format Support:

    • Where relevant, modules display the user and tenant information.

    • You can search by userId or tenantId when you view logs.

    • The log files support JSON format.

    • See Monitor Modules for additional context.

  • Delete User/Tenant:

    • When you, as the administrator, attempt to delete a CloudCenter Suite user (or tenant or sub-tenant), the Suite Admin triggers a confirmation process to verify (with each module) that the resource can be deleted.

    • As each user/tenant/sub-tenant may have a separate set of dependencies, multi-selection is not possible for this action. This is a change!

    • See Create and Manage Users > Delete User and Manage Tenants > Tenants List Page for additional details.

  • Enable/Disable User:

    • A new Enable column allows administrators to configure the state for each user.

    • This column replaces the Enable/Disable option in the Actions dropdown list. This is a change!

    • See Create and Manage Users > Enable/Disable User for additional details.

  • Email Link Expiration:

    • The user receives an alert when logging in for the first time, along with a link to change the assigned password.

    • The user has 30 days to act on this message and use the link to change the password. This time period has changed from 1 day in earlier releases. This is a change!

    • See Manage Tenants > General Settings for additional details.

Cluster Management

No updates

Security Management

See Security Considerations for details.

Suite UI

The Suite Admin UI includes the following updates and changes:

  • The CloudCenter Suite UI is available in the following languages and is only configurable from the UI:

    • English

    • French

    • Japanese

    • Simplified Chinese

  • You can set your language of choice in one of two configuration screens once the CloudCenter Suite has been installed:

    • Administrative Level: When you configure the suite administrator. See Initial Administrator Setup > Configure an Admin User and Tenant for details.

    • User Level: When you edit your user profile. See Suite Admin Dashboard > The Header for details.

  • See UI Language Availability for additional details.

Deprecated

The following list identifies the functions that were deprecated in Suite Admin UI:

  • The Enable/Disable option in the Actions dropdown list as identified in the Enable/Disable User section above.

  • Multi-selection is not possible when deleting users/tenants/sub-tenants as identified in the as identified in the User Tenant Management section above.

API

Suite Admin 5.1.0 includes the following new and updated APIs:

New APIs

The following list identifies the new Suite Admin APIs:

  • Suite Notification Service API Calls 5.1.0

    • List notifications:
      GET
      /api/v1/notifications

    • Get a notification:
      /api/v1/notifications/{id}

    • Acknowledge notifications:
      PUT
      /api/v1/notified

  • Authentication Service API Calls 5.1.0

    • Obtain the last login information:
      GET /suite-auth/api/v1/currentUser/lastLoginInfo

    • Authentication endpoint for impersonation of a child or descendant tenant. The generated JWT token will have additional SUITE_IMP role:
      POST /suite-auth/api/v1/impersonate

    • Authentication endpoint for impersonation. The generated JWT token will have additional SUITE_IMP role:
      POST /suite-auth/api/v1/impersonate/{userId}

    • Return to the original user after impersonation, restores role and creates a new JWT for the original user:
      GET /suite-auth/api/v1/returnUser

  • IDM Service API Calls 5.1.0

    • Create a task:
      POST /api/v1/develop/tasks

    • Update a task:
      PUT /api/v1/develop/tasks/{id}

    • Delete a task:
      DELETE /api/v1/develop/tasks/{id}

    • Get a preflight:
      GET /api/v1/preflights/{preflightId}

    • List of users in a simplified format:
      GET /api/v1/simple_users

    • List of users for a tenant's in simplified format:
      GET /api/v1/tenants/{tenantId}/simple_users

    • List preflights under a tenant:
      GET /api/v1/tenants/{tenantId}/preflights

  • Logs Service API Calls 5.1.0

    • Get log archive configuration:
      GET /api/v1/configs/archive

    • Save log archive configuration:
      POST /api/v1/configs/archive

    • Delete log archive configuration:
      DELETE /api/v1/configs/archive

    • Disable log archive configuration:
      POST /api/v1/configs/archive/disable

    • Test permission to write to AWS S3 Bucket:
      POST /api/v1/configs/validate_s3_bucket

    • Get all loggers configuration for the specified service:
      GET /api/v1/services/{serviceName}/loggers

    • Set loggers configuration for a service:
      POST /api/v1/services/{serviceName}/loggers

Updated APIs

The following list identifies the updated Suite Admin APIs:

  • IDM Service API Calls 5.1.0

    • Search and update tenants using the id parameter:
      PUT /api/v1/search/tenants 

    • Search and update groups using the id parameter:
      PUT /api/v1/search/tenants/{tenantId}/groups Search groups 

    • Delete tenants using a unique, alphanumeric tenantId:
      DELETE /api/v1/tenants/{tenantId} 

    • Tenant-based settings includes useParent, useParentConfig detailsbased on root user credentials and updated currencyExchange.currencyCode details:

      • GET /api/v1/tenants/{tenantId}/effective_tenant_config

      • GET /api/v1/tenants/{tenantId}/tenant_config

      • PUT /api/v1/tenants/{tenantId}/tenant_config

      • POST /api/v1/tenants/{tenantId}/tenant_config

    • Add a product to a tenant includes preflight details:
      POST /api/v1/tenants/{tenantId}/products/{productId} 

    • Check validity of new user parameter includes preflight details:
      PUT /api/v1/tenants/{tenantId}/validity/newUser  

    • Delete the requested user includes preflight details:
      DELETE /api/v1/users/{userId}  

  • Product Registry Service API Calls 5.1.0

    • Get Product Metadata includes preflight details:
      GET /api/v1/products/{productId}  

  • Resource Management Service API Calls 5.1.0

    • Deletes a resource deletes the created (date), id, lastUpdated, resourceName, and resourceType details:
      DELETE /api/v1/resource/{resourceId} 

    • Returns tenant branding information with companyWebsite, contactEmail, privacyPolicyUrl, termOfServiceUrl, trademarkUrl details:
      GET /api/v1/tenants/{tenantId}/branding 

    • Save tenant branding information with companyWebsite, contactEmail, privacyPolicyUrl, termOfServiceUrl, trademarkUrl details:
      POST /api/v1/tenants/{tenantId}/branding

Deprecated APIs

The following list identifies the deprecated Suite Admin APIs:

  • Logs Service API Calls 5.1.0

    • Get log files:
      GET /api/v1/products/{productId}/files  

    • Get services:
      GET /api/v1/products/{productId}/services 

  • Resource Management Service API Calls 5.1.0

    • Get all loggers configuration for the specified service:
      GET /api/v1/services/{serviceName}/loggers  

    • Set loggers configuration for a service:
      POST /api/v1/services/{serviceName}/loggers  

    • Deletes the specified list of loggers configuration for the specified service:
      DELETE /api/v1/services/{serviceName}/loggers  

Documentation

Known Issues

CloudCenter Suite 5.1.0 has the following known issue:

  • If a notification is read by one user, then this icon reflects the notification as read for all users.

Resolved Issues

The following issue was resolved in CloudCenter Suite 5.1.0:

  • CSCvq09604: The web service global parameter does not work with proxy authentication.
    Resolution: As web service calls are routed through the proxy CloudCenter Suite 5.1 includes a fix to ensure that when proxy settings are modified on the Suite Admin, the CloudCenter Suite management pod is rebooted to apply the configuration. See Proxy Settings for additional details.


  • No labels
© 2017-2019 Cisco Systems, Inc. All rights reserved