Stemcell v1200.x (Windows 2012R2) Release Notes

This topic includes release notes for Windows stemcells used with Pivotal Application Service (PAS) for Windows 2012R2.

To download a stemcell, see Stemcells for PCF (Windows) on Pivotal Network.

1200.21

Release Date: July 9, 2018

  • Intended for use with June 2018 Microsoft security updates.
  • Includes CIS MS-L1 v2.2.1 security hardening for the public IaaSes (Azure, AWS and GCP)

1200.19

Release Date: June 1, 2018

  • [Bug Fix] Includes a fix to support syncing as stated by Microsoft even when the time is drastically off.

1200.18

Release Date: May 18, 2018

  • Intended for use with May 2018 Microsoft security updates.

1200.17

Release Date: May 8, 2018

  • Intended for use with April 2018 Microsoft security updates.
  • Fixed a security issue.
  • Includes fixes for these security updates from Microsoft:
    • Microsoft Internet Explorer Cumulative Security Update (MS15-124)
    • Microsoft Internet Explorer Security Update for September 2017
    • Microsoft Windows CredSSP updates for March 2018
  • Disabled root disk resizing and provided larger root disks by default. For more information, see Using Windows Stemcells.

1200.16

Release Date: March 26, 2018

1200.15

Release Date: February 21, 2018

1200.14

Release Date: February 13, 2018

1200.13

Release Date: January 17, 2018

1200.11

Release Date: December 22, 2017

  • For Azure, GCP, and AWS Windows Stemcells, the root disk (C Drive) will be automatically resized on creation to the disk size specified in BOSH cloud config. Due to current CPI limitations, vSphere Stemcells are NOT able to resize their root disk on creation.
  • Intended for use with December Microsoft security updates.

1200.10

Release Date: December 19, 2017

  • You must use stembuild version 0.13 when creating a 1200.10 stemcell by hand.
  • AWS stemcells repartition to use entire root disk size as specified in BOSH cloud config.
  • Stemcell adds support for multiple CPIs. You can now set stemcell_formats in stemcell.MF.
  • Intended for use with November Microsoft security updates.
  • Updated OpenSSH to 0.0.22.
  • The BOSH Agent uses a lock file to ensure that DNS resolvers are updated only on first startup.

1200.8

Release Date: November 10, 2017

  • BOSH Agent: Disables port 5985 for WinRM by default.
  • [Bug Fix] Fixes an issue where an empty cloud config would remove all DNS resolvers from a Windows host.
  • [Bug Fix] Fix for IPsec add-on.

Known Issues

  • File updates.txt is not generated for 2016/1709 stemcells.

1200.7

Release Date: October 23, 2017

  • [Bug Fix] BOSH Agent timeout fix for high ESX workload scenarios.
  • Intended for 2017 Oct Windows Updates roll-up (KB4041685).

1200.6

Release Date: October 18, 2017

  • [Security Improvement] Includes CIS MS-L1 v2.2.1 security hardening.
  • [Security Improvement] The security policies disable RDP by default. To enable RDP, use the enable_rdp job in the windows-utilities-release (version 0.4.0 or greater).
  • [Bug Fix] Fixes an issue in the BOSH Agent regarding DNS resolvers that can cause application downtime when a BOSH Director is unavailable (e.g. during upgrades) when deployed on Cloud Foundry.

Known Issues

  • In the case of an empty cloud config, the Windows host DNS list will be cleared on BOSH Agent restarts.
  • CIS policies break the IPsec add-on.

1200.5

Release Date: October 11, 2017

  • Install-CFFeatures is now Install-CFFeatures2012.
  • [Security Improvement] BOSH Agent randomizes password for Administrator user on bootup. To set the password, use the set_password job in the windows-utilities-release.
  • Removes Windows Defender for all IaaSes in Windows Server 2016/1709.
  • [Improvement] No longer installs Docker on Windows 2016/1709.

1200.4

Release Date: September 14, 2017

  • The BOSH-Agent now disables automatic updates during its bootstrap process.
  • Do not remove Powershell-ISE when building stemcell.
  • Added better error checking when applying group policies.
  • Intended for 2017 Sep Windows Updates roll-up.
  • Sets smaller MTU of network interfaces created by Docker on GCP for Windows 2016.
  • Skip sysprep until official Windows 1709 build is available due to bug in insider build.

1200.3

Release Date: August 22, 2017

  • Agent backs off exponentially when unable to reach the director, moving from 5 seconds to 160 seconds over 6 connection attempts, to reduce the impact on small-footprint BOSH VMs. This resolves BOSH Agent Open Issue #137.
  • BOSH SSH is now supported as a beta feature. Users can enable connecting to a cmd session using the bosh ssh command by running the relevant job from windows-utilities-release.
  • Fixed an issue where jobs were being stopped synchronously rather than concurrently, preventing stop scripts that waited on other stop scripts from ever finishing.
  • Fixed an issue where jobs that failed to start on the first attempt weren’t being retried.
  • Other minor bug fixes and performance improvements.

1200.0

Release Date: July 14, 2017

  • Includes July 2017 Windows Security Updates.
  • Fixes an error where Windows stemcells were incompatible with bosh director setting ‘enable_nats_delivered_templates’ set to true.
  • Fixed startup issue on GCP.
  • Fixed issue where the Windows Agent would reset DNS settings whenever the HTTPMetadataService was invoked on AWS.
  • Upgrades included .NET version to 4.7.

1079.0

Release Date: June 5, 2017

  • Based on Windows Server 2012R2.
  • Includes .NET Framework 4.6.1.
  • Available for AWS, GCP, and Azure.
  • Includes all Windows Updates and security patches up through April 2017.
  • To be used with Pivotal Cloud Foundry (PCF) Runtime for Windows v1.9.3+, v1.10.2+, and v1.11.0.

1056.1

Release Date: June 1, 2017

  • Based on Windows Server 2012R2.
  • Includes .NET Framework 4.6.1.
  • Available for AWS, GCP, and Azure.
  • Includes all Windows Updates and security patches up through March 2017.
  • To be used with Pivotal Cloud Foundry (PCF) Runtime for Windows v1.9.0, v1.9.1, v1.9.2, v1.10.0, v1.10.1.

1056.0

Release Date: April 5, 2017

  • Based on Windows Server 2012R2.
  • Includes .NET Framework 4.6.1.
  • Available for AWS, GCP, and Azure.
  • Includes all Windows Updates and security patches up through March 2017.
  • To be used with Pivotal Cloud Foundry (PCF) Runtime for Windows v1.9.0, v1.9.1, v1.9.2, v1.10.0, v1.10.1.

Known Limitations

  • Does not support BOSH SSH or persistent disks.
Create a pull request or raise an issue on the source for this page in GitHub