VMware Carbon Black Cloud Workload 1.2.1 | 27 SEP 2022 | Build 20470511

Check for additions and updates to these release notes.

Overview

VMware Carbon Black Cloud Workload is a data center security product that protects your workloads running in a virtualized environment. It provides an ability to ensure workloads have built-in protection making security intrinsic to the virtualized environment. It includes core capabilities such as agent-less delivery, inventory, lifecycle management, vulnerability assessment, and remediation. It also includes endpoint protection capabilities such as next-gen antivirus, real-time threat hunting and endpoint detect and response. For more information, see:

What's New

The VMware Carbon Black Cloud Workload appliance 1.2.1 is a maintenance release containing security updates and improvements based on customer feedback.

  • NSX 4.0.0.1 Support

    The Carbon Black Cloud Workload appliance now supports NSX with version 4.0.0.1.

  • Root Password Set to Never Expire

    During an upgrade to Carbon Black Cloud appliance 1.2.1, the root password for the appliance is set to never expire by default. This functionality allows for successful upgrade operations, which otherwise fail when the appliance root password has already expired.

    To enforce root password expiry and align with compliance mandates, see step 6 in Reset Appliance Password.

  • Control of Admin Password Expiration

    The Carbon Black Cloud Workload appliance allows you to enable or disable the admin password expiry within the General > Password Settings page.

Resolved Issues

The following issues were resolved in this release:

  • Carbon Black Cloud Workload appliance might show with outdated Last Checkin time

    The Carbon Black Cloud Workload appliance status visible on the Settings > API Access > API Keys page in the Carbon Black Cloud console now reports the same time as the Last Checkin time in the Appliance Details page.

  • Appliance storage space is fully occupied by logs from /var/log/auth.log

    Logs from the /var/log/auth.log file were filling up the appliance storage space causing the appliance upgrade to fail due to no space left in the mounts used for the upgrade flow. The appliance could not download the upgrade bundle and thus, could fail the upgrade process. Now, an additional logrotate cronjob is setup for deleting log files on daily basis and keeping only the last 5 log files in GZ format.

  • Log file rolling in the appliance stops working when the log file limit is reached

    Once 2 files are created and they reach the maximum limit of 200MB, then all the logs are dumped into the main file. Now, a cronjob adds a maximum limit to the overall log size per service and keeps deleting older logs.

  • Installing Host User World fails if the proxy server is configured

    Proxy support is now implemented in the Host User World installer. You can configure the proxy settings for the Carbon Black Cloud Workload appliance without causing the Host User World installation to fail with the error HOST_MODULE_DOWNLOAD_FAILED_ON_APPLIANCE.

  • Carbon Black Cloud Workload appliance shows wrong status for Carbon Black Plugin field after an upgrade

    Upgrading to Carbon Black Cloud Workload appliance 1.2 does not result with the error in the appliance Dashboard > Carbon Black Plugin field indicating that the plugin is not installed properly.

  • The sshd process does not start intermittently after appliance deployment

    The SSH server process is now updated to start on a newly deployed appliance.

Known Issues

  • Upgrading NSX from 4.0.0.1 to 4.0.1 incorrectly preserves the previous version of NSX in the Carbon Black Cloud Workload appliance

    When you upgrade NSX to 4.0.1 and register it successfully with the Carbon Black Cloud Workload appliance, you can view the previous 4.0.0.1 version of NSX in the Appliance > Registration > NSX details page. However, you can view the correct 4.0.1 version of NSX in the About VMware NSX pop-up, part of the NSX console UI.

    Workaround: None.

  • Carbon Black Cloud console displays unreachable appliance as eligible

    On the Carbon Black Cloud console, from the Inventory > Workloads > Not Enabled tab, you can filter VMs based on the Eligibility status. Some eligible VMs are listed with a note 'Not eligible. Unreachable appliance' if the on-premise appliance is unable to communicate with the Carbon Black Cloud. Even though the appliance is unreachable, the Carbon Black Cloud console displays the unreachable appliance under the Eligible filter.

    Workaround: None

  • Upgrading Carbon Black Cloud Workload appliance fails when there is discrepancy between the appliance version in Carbon Black Cloud and the actual appliance version

    Workaround: Carbon Black Cloud and the Carbon Black Cloud Workload appliance must be always in sync on the appliance version. For example, to upgrade successfully the appliance from versio 1.0.2 to version 1.1.2, make sure the version of the appliance is 1.0.2 in the cloud as well.

  • Upgrading Carbon Black Cloud Workload appliance fails if it is not registered with the vCenter Server

    Workaround: Register the appliance with the vCenter Server prior upgrading it to version 1.2. For details, see Register Appliance with vCenter Server.

check-circle-line exclamation-circle-line close-line
Scroll to top icon