v5.2.5 Release Notes

v5.2.5 Highlights

Two-factor Authentication

  • Enable two-factor authentication on a per-user basis

  • Once enabled, users will use their two factor auth app of choice (such as Google Authenticator) to obtain the access code

  • Compatible with local Morpheus accounts as well as Active Directory and LDAP-sourced accounts

../_images/2fa.gif

New Features

  • NSX-T: Visibility permissions added to NSX-T integrations allowing master tenant administrators to share integrations with subtenants

  • NSX-T: Distributed firewalls for NSX-T integrations shared with a subtenant can now be created and managed by subtenant users

  • NSX-T: Load balancers and LB virtual servers for NSX-T integrations shared with a subtenant can now be created and managed by subtenant users

  • NSX-T: Load balancer rule creation capability added as part of load balancer virtual server creation in Morpheus UI

  • NSX-V: Visibility permissions added to NSX-V integrations allowing master tenant administrators to share integrations with subtenants

  • Security: Two-factor authentication added for Morpheus local users as well as users from Active Directory and LDAP identity sources

  • Settings: Add IP addresses or hostnames to approved or denied lists which limits users to only approved sources when creating HTTP Tasks or populating Option Lists through REST calls. Previously, specific hosts could be denied but now administrators can opt to deny all hosts except those which are specifically approved

Morpheus API Improvements

  • Plans: Remove Service Plans through API (and CLI) as can already be done in Morpheus UI

Fixes

  • Activities: Fixed retention period for activities indices in Elasticsearch

  • App: Fixed error messages that contained database exception response

  • AWS: Costing: Fix for amazon costing intgearation data sync when no costing tags exist

  • Backups: Fixed default schedule displayed on backup screen when no job schedule is configured

  • Cloud-init: Fixed multiple Default Gateway flags when creating multiple networks

  • Git: Added retries on fetch to account for possible timeouts

  • Git: Reverted 5.2.4 change that added 5 minute cache for git fetch in place of fetch at execution time.

  • Identity Sources: Fixed Get Token API call with custom SSO URL returning 500 instead of 404 if the user do not exists

  • IPAM: Fixed issue where editing an IPAM integration from Administration -> Integrations section would set invalid integration ref.

  • NSX-T: Fixed network delete when network is part of a network group

  • Oracle Cloud: Costing: Updates and optimizations for Oracle Cloud Costing integrations

  • Reports: Optimizations added to improve Report generation performance

  • Service Catalog: Option Types: Fixed VISIBILITY FIELD not respecting``matchAll`` logic

  • Snapshots: Fixed revert action failing on Brownfield Snapshots when compute_server moved to another tenant

  • Virtual Images: System Amazon Windows ami Virtual Image refreshed

  • VMware: Folders: Fixed Group Access -> Default Folder setting only saving for one cloud when multiple VMware Clouds are in the same target Group

Appliance Updates

  • Tomcat upgraded to v9.0.45

  • Nginx updated to v1.19.9

  • OpenSSL upgraded to 1.1.1k for non-FIPS Appliances

Refer to v5.2.5 Compatibility & Breaking Changes for additional details.