Release 3, January 2024

What's New in Release 3, January 2024

The updates for this release focus on improving security, enhancing usability, and adding new functionalities to Cisco Spaces: Connector.

  • OS Upgrades: The base OS packages have been upgraded.

  • Security: Vulnerability fixes are available until January 2024. The weak SSH MAC algorithms and IPv6 routing are disabled by default. However, IPv6 is enabled, if you have configured it on the first boot.

  • High Availability workflow and configuration: Optimizations have been made in the high availability Init/Destroy workflow. When you reset the connector token, the high availability configuration is reloaded.

  • New Commands: The following commands have been introduced.

    • connectorctl network ipv6 : Enables or disables IPv6 on a network interface.

    • connectorctl troubleshoot bandwidth : Tests the bandwidth of the connection between connector and Cisco Spaces.

    • connectorctl dockersubnet : Manages IP configuration of docker daemon.

    • connectorctl keyexg : Manages weak key-exchange algorithms.

    • connectorctl httpproxy-auth-deny-chars : Updates reserved characters used in proxy passwords.

  • Logging and Troubleshooting: New log files have been created for service lifecycle and service manager startup. You can find logs for operations such as service monitoring, service restart, and service upgrade. Also, a log has been created specifically for services control channel monitoring. You can find the following new log files in the /opt/spaces-connector/runtime/logs/service-manager/server directory:

    • Service installation and upgrade log: service-lifecycle.log

    • Service manager startup log: service-manager-init.log

    • Service local control channel monitor job log: sm-ctlr-monitor.log.


    Note

    The log upload timeout has been increased to 10 minutes to support large file uploads.

  • UI Improvements are as follows:

    • While operations involving a token or proxy are running, all other user actions are blocked

    • If the user is inactive for 30 minutes, the session is closed and the user is redirected to the login page.

    • Log download notifications have been added.

  • Network Interface Stats: A new chart showing the network interface stats of the connector has been added to the connector's Metrics tab on the Cisco Spaces dashboard.

  • NTP Service Monitoring: The connector now restarts the NTP-dependent services if there is no heartbeat.

  • Privacy Settings: You can no longer use blank-space characters as salt values for hashing and enhancing the security of the system.

Issues

Open Issues in Connector, Release 3, January 2024

Table 1. Open Issue
Issue Description
CSCwf28880 The configuration of Virtual IP (VIP) addresses fails with Amazon Machine Image (AMI) connector.

Resolved Issues in Connector, Release 3, January 2024

Table 2. Resolved Issues
Issue Description
CSCwf27599

Initial setup of IoT Streams is unsuccessful on a Day 0 High-Availability deployment.
CSCwf27095

After successful upgrade of the IoT service (wireless), the wireless controller moves to degraded state.

CSCwf31185

In a High-Availability Virtual IP (VIP) Paired setup, Fastlocate does not propagate the Security Parameter Index (SPI) keys to connector instances.