Pivotal Platform v2.7 Feature Highlights
- Pivotal Operations Manager Highlights
-
Pivotal Application Service Highlights
- Java Apps Support Sidecars (Beta)
- Rolling App Deployments is GA
- Rotate Cloud Controller Encryption Key
- Enable Inactive MySQL Port for Auditing and Reporting
- Enhanced Security for Routing API with mTLS
- Syslog Agents Enabled by Default
- nfsbroker Back End is in CredHub
- Manage App Re-Deployments and Revisions in Apps Manager
- Apps Manager UI Redesign
- Pivotal Application Service for Windows Highlights
This topic highlights important new features included in Pivotal Platform v2.7.
Pivotal Operations Manager Highlights
Ops Manager v2.7 includes the following important major features. For additional information about these and other features included in Ops Manager v2.7, see Pivotal Operations Manager v2.7 Release Notes.
Resource Config Pane is Redesigned
The Ops Manager Resource Config Pane is redesigned. The updated pane includes improved error handling to help you more easily troubleshoot. It also includes additional configuration options for each job based on IaaS.
NSX-T and NSX-V Configuration in Ops Manager
The Resource Config pane in Ops Manager includes fields for configuring instance groups in deployments with vSphere NSX-T or NSX-V.
View Expiration Dates for Certificates
You can view the expiration date for certificates in your environments based on information provided by BOSH and CredHub. This is part of a larger initiative to provide users with more control over the rotation of credentials in their environments.
View Request Parameters in User Activity Logs
The Ops Manager audit_log.txt
file includes request parameters. This provides additional information about requests made in the Ops Manager UI, such as the timestamp of the request and the username that made the request.
To access the audit_log.txt
file, SSH into the Ops Manager VM and navigate to /var/log/opsmanager/audit_log.txt
.
Forward Deployment Information to Pivotal Support
You can download a Platform Information Bundle as a ZIP file from the Ops Manager UI or API. The bundle includes Ops Manager logs, deployed manifests and configurations, and BOSH deployment diagnostics.
The contents of the bundle help Pivotal Support more quickly address any issues in your deployment.
Pivotal Application Service Highlights
PAS v2.7 includes the following important major features. For additional information about these and other features included in PAS v2.7, see Pivotal Application Service v2.6 Release Notes.
Java Apps Support Sidecars (Beta)
You can push Java apps with sidecars. Sidecars allow you to run additional processes in the same container as your app. This is useful for processes that depend on each other or must run in the same container.
Pushing apps with sidecars is a beta feature that released with PAS v2.6.0.
Rolling App Deployments is GA
PAS v2.7 includes GA support for rolling app deployments. Rolling app deployments offer near-zero downtime for app pushes and restarts.
Use the --strategy rolling
and no-wait
flags in the cf CLI to do rolling deployments.
Rotate Cloud Controller Encryption Key
You can rotate the Cloud Controller Database (CCDB) encryption key, which encrypts sensitive data such as app environment variables.
Enable Inactive MySQL Port for Auditing and Reporting
You can run auditing and reporting queries on a MySQL node that is not currently serving traffic. By running these queries on an inactive node, the active MySQL nodes continue to serve requests with no effect on performance.
Enhanced Security for Routing API with mTLS
Traffic between the Routing API and other routing components is secured with mutual TLS (mTLS) encryption. This provides additional security for communication between routing components in PAS.
Syslog Agents Enabled by Default
Syslog Agents are enabled by default, and the option to disable Syslog Agents is removed. Syslog Agents run on host VMs and component VMs, increase the number of syslog drain service bindings supported by the Loggregator system, and reduce the workload for Loggregator VMs.
nfsbroker Back End is in CredHub
The nfsbroker back end is migrated to CredHub. This allows you to specify LDAP credentials when you create an NFS Volume Service instance.
Manage App Re-Deployments and Revisions in Apps Manager
You can do the following in Apps Manager to manage app re-deployments and revisions:
- View revisions for an app.
- Deploy a revision of an app.
- View the deployment status of an app revision.
- View the environment variables associated with an app revision.
Apps Manager UI Redesign
The Apps Manager UI is redesigned with improved navigation and an updated look and feel. The improved navigation appears in a panel on the left side of the screen, which allows you to more quickly access settings and resources for the orgs, spaces, apps, and services in your environment.
Pivotal Application Service for Windows Highlights
Pivotal Application Service for Windows v2.7 includes the following important major features. For additional information about these and other features included in Ops Manager v2.7, see Pivotal Application Service for Windows v2.7 Release Notes.
Pre-Installed Visual C++ Redistributables
Pivotal Application Service for Windows v2.7 improves the developer experience with pre-installed Microsoft Visual C++ Redistributables for .NET apps.
Secure mTLS Communication from Gorouter (Beta) to Windows containers
Windows AIs provide secure mTLS communication from Gorouter to Windows containers. This allows for PCI security compliance for Windows container networking.
Windows Stemcells Follow Microsoft Baseline Security Standard
Stemcells for Windows Server 2019 VMs follow the Microsoft Baseline Security Standard. This improves the security for Windows stemcells and better aligns the Windows stemcell hardening practices with an industry standard.
RDP Support is Removed in Favor of BOSH SSH
Warning: This feature is a breaking change. See RDP is Not Supported in Pivotal Platform v2.7 Breaking Changes.
The Enable Remote Desktop Protocol field is removed from the PAS for Windows tile. PASW VMs do not support connection through RDP.
This is part of a larger effort to achieve platform parity with Linux VMs by enabling bosh ssh
for all actions related to the Windows VMs.