VMware NSX Application Platform 4.1.2 |11 APR 2024 | Build 23624714

NSX Application Platform Automation Appliance 4.1.2 | Build 23646425

Check for additions and updates to these release notes.

What's New

VMware NSX Application Platform 4.1.2 provides the following support and enhancements:

New automated installation of VMware NSX Application Platform introduced

The NSX Application Platform Automation Appliance simplifies provisioning underlying infrastructure using vSphere with Tanzu and NSX Application Platform. This appliance streamlines the process, from creating necessary resources to configuring network settings and deploying applications. It offers a lightweight bootstrap environment, making the process more efficient and faster. The appliance provides a standalone UI and CLI deployment mode. For more information, see Deploying and Managing NSX Application Platform Using Automation Appliance and installation video.

Added support for Kubernetes versions

  • Tanzu Kubernetes releases (TKrs) version 1.21, 1.23.8, 1.24.11, 1.26.5, and 1.27.6.

  • Upstream Kubernetes versions 1.21, 1.23, 1.24, 1.26, and 1.27.

It is recommended to upgrade to the latest Kubernetes versions to avoid known critical vulnerabilities in older versions.

NSX Application Platform form factor update

The NSX Application Platform only deploys an Advanced form factor with three Control Plane and three Worker nodes.

Deprecation Notes

  • With this release, the following releases of the NSX Application Platform are being deprecated and planned to be removed later.

    4.1.1

    4.0.1

    3.2.1.1

    3.2.1

    3.2.0

Important:

Existing NSX Application Platform deployments are not affected by the deprecation. These deployments continue to work.

  • The NSX Application Platform Automation Appliance 0.3.2 is being deprecated.

Compatibility and System Requirements

For information on compatibility and system requirements, see the VMware Product Interoperability Matrices. For information about ports and protocols, see the NSX Application Platform section of the VMware Ports and Protocols.

After successfully installing the NSX Application Platform, you can access the following security service capabilities based on your license.

NSX Intelligence

NSX Network Detection and Response

NSX Malware Prevention

NSX Application Platform API Metrics

Resolved Issues

  • New - Fixed Issue 3280885: NSX Application Platform deployment might fail at 80% progress during metrics charts deployment.

    The readiness and liveness probe timeouts on the NSX Application Platform for metric framework components are inadequate, causing the failure of the metrics chart deployment.

  • New - Fixed Issue 3272513: After upgrading the NSX Application Platform from version 4.0.1 to 4.1.1, ESXi hosts do not provide metrics when the Metrics Delivery Alarm is open.

    The NSX Application Platform trust manager with missing Host TransportNode entities results in failed metrics communication as UNAUTHENTICATED.

  • Fixed Issue 3360651: Transport nodes UI alarm might show that the transport nodes flow is disconnected. The alarm might disappear after 20-30 minutes and reappear later.

    In rare cases, one of the Kafka pods might run without the Kafka client certificates in its truststore, causing sporadic connectivity issues that recover upon retrying one of the other replicas.

  • Fixed Issue 3336056: When deploying an NSX Application Platform 4.1.1 Kubernetes cluster with one control node and adding more control nodes, the new control nodes are created, and the NSX Application Platform goes into a degraded state.

    During WCP guest cluster control nodes creation, the network policy goes out of sync, and Kubernetes API-based commands might fail from the NSX Application Platform.

  • Fixed Issue 3365699: Slow disk mount and timing problems with certificate loading might cause the installation of the NSX Application Platform to stall during the registration step.

    When deploying the TKG guest cluster with custom certificates to /etc/ssl/certs from the underlying VM onto the cluster-API pod, the pod might fail during the first boot operation due to the disk speed and contention during the file read.

Known Issues

  • New - Issue 3378503: Initial Network Traffic Analysis (NTA) activation fails in the NSX Application Platform 4.1.2 with an Advanced Threat Protection (ATP) license.

    The NTA feature is activated with an ATP license in two scenarios:

    1. The NTA feature is automatically activated when the NSX Intelligence feature is activated with an ATP license.

    2. When the NSX Intelligence feature is active, and an ATP add-on license is later added, the NTA feature is activated.

    See the ATP license requirements.

    Despite having a valid ATP license, the initial activation attempt of NTA fails in the NSX Application Platform 4.1.2 release. An error message appears for the Events and Detector Definitions options under the NSX > Security > Suspicious Traffic menu.

    The application server encountered an error while trying to fulfill your request. (404 Not Found)

    Workaround: Complete the following steps:

    1. Upgrade to NSX Application Platform 4.1.2.1.

    2. Log in to the NSX Manager appliance using the root account.

    3. Delete the existing ATP license.        

    4. Add the ATP license again and wait for a few minutes.

    5. Select NSX > Security > Suspicious Traffic > Events and Detector Definitions to verify that there is no error.

  • Issue 3374692: Newly added transport nodes might fail to authenticate with the NSX Application Platform, making the metrics data unavailable.

    When new transport nodes are added to NSX after the NSX Application Platform has been deployed, those transport nodes do not send metrics data because the authentication server has not received the transport node certificates from the trust manager. This triggers the Metrics Delivery Failure alarm in the NSX UI.

    Workaround: Restart the NSX Application Platform authentication server and follow the instructions in the KB article.

  • Issue 3362836: NSX Application Platform deployment fails with an error message, Metrics post deployment plugin call failed.

    Deployment of the NSX Application Platform failed, but the metrics installation succeeded. All metrics pods are running and healthy.

    Workaround: In the deployment UI, click Retry when the metrics installation error message appears.

  • Issue 3373706 - Metrics pods are stuck in the crash loopback state on the NSX Application Platform.

    If one or more replication slots are inactive, WAL (Write-Ahead Logging) files can accumulate, causing the PostgreSQL server to crash.

    Workaround: To resolve this issue, follow the instructions in the KB article.

  • Issue 3308601: PostgreSQL server fails and prevents applications from connecting to Postgres, rendering the NSX Application Platform unusable.

    PostgreSQL server fails, causing the Postgres pods to remain in the crash loopback state, resulting in the No space left on device error message.

    Workaround: To resolve this issue, follow the instructions in the KB article.

  • Issue 3372869: NSX Application Platform Automation Appliance displays more than two instances in the deployment wizard.

    NSX Application Platform Automation Appliance deployment wizard displays more than two instances under Environment Configuration > Configure Load Balancer > Maximum Number Of NAPP Instances section. The maximum number of supported instances is two per Supervisor cluster.

    Workaround: None

Document Revision History

Revision Date

Edition

Changes

May 16, 2024

5

Added known issue 3378503.

April 18, 2024

4

Added NSX Application Platform installation video link.

April 16, 2024

3

Added known issue 3272513.

April 16, 2024

2

Added fixed issues 3272513 and 3280885.

April 11, 2024

1

Initial edition
check-circle-line exclamation-circle-line close-line
Scroll to top icon