Pivotal Platform v2.7 Feature Highlights
This topic highlights important new features included in Pivotal Platform v2.7.
Ops Manager v2.7 includes the following important major features. For more information about these and other features included in Ops Manager v2.7, see Pivotal Operations Manager v2.7 Release Notes.
The Ops Manager Resource Config Pane is redesigned. The updated pane includes improved error handling to help you more easily troubleshoot. It also includes additional configuration options for each job based on IaaS.
The Resource Config pane in Ops Manager includes fields for configuring instance groups in deployments with vSphere NSX-T or NSX-V.
You can view the expiration date for certificates in your environments based on information provided by BOSH and CredHub. This is part of a larger initiative to provide users with more control over the rotation of credentials in their environments.
The Ops Manager
audit_log.txt file includes request parameters. This provides additional information about requests made in the Ops Manager UI, such as the timestamp of the request and the username that made the request.
To access the
audit_log.txt file, SSH into the Ops Manager VM and navigate to
You can download a Platform Information Bundle as a ZIP file from the Ops Manager UI or API. The bundle includes Ops Manager logs, deployed manifests and configurations, and BOSH deployment diagnostics.
The contents of the bundle help Pivotal Support more quickly address any issues in your deployment.
PAS v2.7 includes the following important major features. For additional information about these and other features included in PAS v2.7, see Pivotal Application Service v2.7 Release Notes.
You can push Java apps with sidecars. Sidecars allow you to run additional processes in the same container as your app. This is useful for processes that depend on each other or must run in the same container.
Pushing apps with sidecars is a beta feature that released with PAS v2.6.0.
PAS v2.7 includes GA support for rolling app deployments. Rolling app deployments offer near-zero downtime for app pushes and restarts.
--strategy rolling and
no-wait flags in the cf CLI to do rolling deployments.
You can rotate the Cloud Controller Database (CCDB) encryption key, which encrypts sensitive data such as app environment variables.
You can run auditing and reporting queries on a MySQL node that is not currently serving traffic. By running these queries on an inactive node, the active MySQL nodes continue to serve requests with no effect on performance.
Traffic between the Routing API and other routing components is secured with mutual TLS (mTLS) encryption. This provides additional security for communication between routing components in PAS.
Syslog Agents are enabled by default, and the option to disable Syslog Agents is removed. Syslog Agents run on host VMs and component VMs, increase the number of syslog drain service bindings supported by the Loggregator system, and reduce the workload for Loggregator VMs.
The nfsbroker back end is migrated to CredHub. This allows you to specify LDAP credentials when you create an NFS Volume Service instance.
You can do the following in Apps Manager to manage app re-deployments and revisions:
- View revisions for an app.
- Deploy a revision of an app.
- View the deployment status of an app revision.
- View the environment variables associated with an app revision.
The Apps Manager UI is redesigned with improved navigation and an updated look and feel. The improved navigation appears in a panel on the left side of the screen, which allows you to more quickly access settings and resources for the orgs, spaces, apps, and services in your environment.
Pivotal Application Service for Windows (PASW) v2.7 includes the following important major features. For additional information about these and other features included in PASW v2.7, see Pivotal Application Service for Windows v2.7 Release Notes.
PASW %= vars.v_major_version %> improves the developer experience with pre-installed Microsoft Visual C++ Redistributables for .NET apps.
Windows AIs provide secure mTLS communication from Gorouter to Windows containers. This allows for PCI security compliance for Windows container networking.
Stemcells for Windows Server 2019 VMs follow the Microsoft Baseline Security Standard. This improves the security for Windows stemcells and better aligns the Windows stemcell hardening practices with an industry standard.
Warning: This feature is a breaking change. For more information, see RDP is Not Supported in Pivotal Platform v2.7 Breaking Changes.
The Enable Remote Desktop Protocol field is removed from the PASW tile. PASW VMs do not support connection through RDP.
This is part of a larger effort to achieve platform parity with Linux VMs by enabling
bosh ssh for all actions related to the Windows VMs.