Veritas Access Appliance 8.2 Release Notes

Last Published:
Product(s): Appliances (8.2)
Platform: Veritas 3340,Veritas 3350,Veritas 3360
  1. Overview of Access Appliance
    1.  
      About this release
    2. Changes in this release
      1.  
        Changes to the initial configuration workflow
      2.  
        Configuring multifactor authentication
      3.  
        Configuring single sign-on (SSO)
      4.  
        Security meter
      5.  
        Configuring isolated recovery environment (IRE)
      6.  
        Support for multiple versions of Veritas Data Deduplication
      7.  
        Support for new hardware model
      8.  
        End of life for Wolf Pass server chassis
      9.  
        Stacking subscription licenses
      10.  
        Enhancements to logging
      11.  
        Deprecated functionality in this release
    3.  
      Supported NetBackup client versions
    4.  
      Access Appliance simple storage service (S3) APIs
  2. Software limitations
    1.  
      Limitations related to CIFS
    2. Limitations related to installation and upgrade
      1.  
        Underscore character is not supported for host names
    3.  
      Limitation related to cloud tiering
    4.  
      Limitations related to networking
    5.  
      Limitations related to Veritas Data Deduplication
    6.  
      Kernel-based NFS v4 limitations
    7.  
      File system limitation
    8.  
      Access Appliance S3 server limitation
    9.  
      Long-term data retention (LTR) limitations
    10. Limitation related to replication
      1.  
        Limitation related to episodic replication authentication
      2.  
        Limitation related to continuous replication
    11.  
      Limitations related to user management
  3. Known issues
    1. Access Appliance known issues
      1. CIFS issues
        1.  
          CIFS share created on Access Appliance 8.x version may not be accessible if all the virtual IPs are on a VLAN device
        2.  
          Error message is displayed when the CIFS server is restarted if shares are already configured and the clustering mode is changed to ctdb
        3.  
          Share does not get updated with modified IP if the IP used by a CIFS share is modified using the network ip addr modify command
      2. General issues
        1.  
          Reimaging the appliance from the SSD device fails if a CD with the ISO image is inserted in the CD-ROM
        2.  
          User is not logged out from the command-line interface after running the Cluster> stop all command
        3.  
          User account gets locked on a management or non-management console node
        4.  
          Addition of a user named 'admin' fails from GUI and CLISH
        5.  
          Unable to turn on the beacon to locate compute node OS disks in an Access 3360 Appliance
        6.  
          Unable to assign admin role to AD/LDAP user if multifactor authentication is configured
      3. GUI issues
        1.  
          When provisioning storage, the Access web interface or the command-line interface displays storage capacity in MB, GB, TB, or PB
        2.  
          GUI stops working after ECA deployment
        3.  
          GUI stops working if the ECA certificates are not renewed or get revoked
        4.  
          When an account gets locked because incorrect login attempts were exceeded, log in from GUI fails even though unlock time is exceeded
      4. Infrastructure issues
        1.  
          The NetBackup client add-on package is not automatically installed on the node when the node is deleted from the cluster and then added to the cluster again.
        2.  
          The Access Appliance management console is not available after a node is deleted and the remaining node is restarted
        3.  
          Add node fails if upgrade is performed from 7.4.2.200 or lower version
      5. Installation and configuration issues
        1.  
          Installer does not list the initialized disks immediately after initializing the disks
        2.  
          When you configure Access Appliance as an iSCSI target, the initiator authentication does not work
      6. Internationalization (I18N) issues
        1.  
          The Access Appliance command-line interface prompt disappears when characters in a foreign language are present in a command
      7. MSDP-C issues
        1.  
          MSDP-C duplication job fails with OpenStorage WORM lock error after the file system is grown to100%
      8. Networking issues
        1.  
          CVM service group goes into faulted state unexpectedly
        2.  
          The IPs hosted on an interface that is not the current IPv6 default gateway interface are not reachable outside the current IPv6 subnet
        3.  
          The network ip addr show command does not display all the FQDN entries for an IP address
        4.  
          All the IRE rules are lost if the firewall disable/enable commands are executed when the cluster is in IRE domain
        5.  
          Unable to log in to IPMI intermittently
      9. NFS issues
        1.  
          Kernel-NFS v4 lock failover does not happen correctly in case of a node crash
        2.  
          Kernel-NFS v4 export mount for Netgroup does not work correctly
      10. ObjectAccess issues
        1.  
          If the cluster name does not follow the DNS hostname restrictions, you cannot work with the ObjectAccess service in Access Appliance
        2.  
          Self test failed for storage_s3test
        3.  
          The Object Access server crashes whenever any operation on the Object Access server requires authentication with the AD server using an AD user
      11. Replication issues
        1.  
          When running episodic replication and deduplication on the same cluster node, the episodic replication job fails in certain scenarios
        2.  
          The System> config import command does not import episodic replication keys and jobs
        3.  
          The job uses the schedule on the target after episodic replication failover
        4.  
          Unplanned failover from source to target cluster might fail with episodic replication
        5.  
          All files are not moved from the cloud tier to the primary tier when you run a file system policy
        6.  
          Episodic replication fails with error "connection reset by peer" if the target node fails over
        7.  
          Episodic replication job with encryption fails after job remove and add link with SSL certificate error
        8.  
          Episodic replication job status shows the entry for a link that was removed
        9.  
          If a share is created in RW mode on the target file system for episodic replication, then it may result in there being different number of files and directories on the target file system compared to the source file system
        10.  
          The promote operation may fail while performing episodic replication job failover/failback
        11.  
          Continuous replication is unable to go to the replicating state if the Storage Replicated Log becomes full
        12.  
          Unplanned failover and failback in continuous replication may fail if the communication of the IPTABLE rules between the cluster nodes does not happen correctly
        13.  
          Continuous replication configuration may fail if the continuous replication IP is not online on the master node but is online on another node
        14.  
          If you restart any node in the primary or the secondary cluster, replication may go into a PAUSED state
        15.  
          Cannot use a file system to create an RVG if it has previously been enabled as the first file system in an RVG and later disabled
      12. STIG issues
        1.  
          The changed password is not synchronized across the cluster
        2.  
          STIG status is not preserved if the system configuration is imported after reimaging the nodes
      13. Storage issues
        1.  
          Destroying the file system may not remove the /etc/mtab entry for the mount point
        2.  
          The Storage> fs online command returns an error, but the file system is online after several minutes
        3.  
          Rollback refresh fails when running it after running Storage> fs growby or growto commands
        4.  
          Rollback service group goes in faulted state when respective cache object is full and there is no way to clear the state
        5.  
          Event messages are not generated when cache objects get full
        6.  
          Pattern given as filter criteria to Storage> fs policy add sometimes erroneously transfers files that do not fit the criteria
        7.  
          When a policy run completes after issuing Storage> fs policy resume, the total data and total files count might not match the moved data and files count as shown in Storage> fs policy status
        8.  
          Storage> fs addcolumn operation fails but error notification is not sent
        9.  
          Unable to create space-optimized rollback when tiering is present
        10.  
          The CVM service group goes in to faulted state after you restart the management console node
        11.  
          The cluster shutdown command does not shut down the node
      14. Upgrade issues
        1.  
          Stale file handle error is displayed during rolling upgrade
        2.  
          The system config import command does not work as expected
        3.  
          Upgrade operation may fail with an Object Access access-key error
        4.  
          Upgrade to 8.2 version fails during precheck if the Object access service is enabled but an S3 bucket is not created
        5.  
          After multi-step upgrade from 7.4.2 to 8.2 eth1 device is not listed in the network ip add show output
        6.  
          Checkpoints might remain in the file systems used by Veritas Data Deduplication (VDD) after the system rolls back after an upgrade failure
      15. Veritas Data Deduplication issues
        1.  
          Provisioning for Veritas Data Deduplication is displayed as failed in GUI
        2.  
          During reconfiguration of Veritas Data Deduplication, the specified username is not considered
        3.  
          If you run the storage fs offline command on a file system on which Veritas Data Deduplication is configured while the dedupe shrink operation is in progress, it may lead to an incorrect configuration of the duplication server
        4.  
          After upgrade, Veritas Data Deduplication configuration fails as the virtual IP association with deduplication is being used by CIFS
        5.  
          Starting deduplication services using the Veritas Data Deduplication 19.0.1 restricted shell fails
        6.  
          Backup jobs fail when Veritas Data Deduplication version 16.0 is configured with encryption
        7.  
          Configuration of Veritas Data Deduplication version 19.0.1 WORM container fails
        8.  
          Earlier set outbound connection rules get removed if the cluster is restarted after dedupe stop command
        9.  
          The MSDP restricted shell command to set minimum and maximum retention period displays an error even after the command is completed successfully
        10.  
          Reconfiguration of Veritas Data Deduplication 19.0.1 version with securecomm enabled option displays an error
      16. Access Appliance operational notes
        1.  
          Access services do not restart properly after storage shelf restart
  4. Getting help
    1.  
      Displaying the Online Help
    2.  
      Displaying the man pages
    3.  
      Using the Access Appliance product documentation

About this release

This document provides release information about the Access Appliance product, including changes in this release.

Curl and Libcurl notification (CVE-2023-38545 and CVE-2023-38546)

Veritas is aware of the recently announced high severity vulnerability in Curl and Libcurl notification (CVE-2023-38545 and CVE-2023-38546). For Access Appliance, Veritas recommends that you use the latest Veritas Data Deduplication version 19.0.1. If it is not possible, then it is recommended that you use Veritas Data Deduplication version 17.1 version. The following security advisory should be followed to install the EEB.

https://www.veritas.com/content/support/en_US/security/VTS23-013