Skip to main content
Version: 2.9.0

Release Notes

DS 2.9.0 - Known Issues

General

  • DS-1536: Cyber Restore Manager - ERROR events showing up after CRM recovery and "lockout" jobs failing.

    info

    Workaround: Manually add the Eyeglass IP to the ignored list before running recovery jobs.

  • DS-1540: RWD Cyber Recovery Manager - Parallel jobs with VAST fail due to inability to generate temporary S3 keys.

  • DS-1684: Multi-platform support - API lockout support for VAST and Qumulo.

    note

    Lockout through API doesn’t support Qumulo or VAST.

  • DS-1891: Converting an Ignore List to Monitor Only List removes duplicate IP addresses.
    If multiple network elements have the same IP address in the Ignored List, when converted to the Monitor Only List, only one instance is retained.

    info

    Workaround: Before converting the Ignored List, take note of which network elements are tied to multiple instances of an IP address. After converting to the Monitor Only List, manually enter any missing entries.

  • DS-1901: Eyeglass Notification Center - No email received for ACCESS_RESTORED.
    Emails are not being sent for ACCESS_RESTORED events.

  • DS-2111: RWD Ignore List conversion to Monitor Only Settings - Target NE Types and Network Elements are not maintained for VAST & Qumulo.
    Target NE Types and Network Elements are not maintained for VAST & Qumulo when converted to Monitor Only Settings. This only occurs with path and user configuration, not client IPs.

  • DS-2122: Bulk Ingest job getting stuck.
    When running bulk ingestion, the job seems to get stuck at the "Wait for the Spark Job" step and does not finish.

    info

    Workaround: None available currently. User cannot ingest audit files from Isilon.

  • DS-2144: Webhooks data missing after an offline upgrade. Saved webhook data is not retained after an upgrade.

    info

    Workaround: Copy the contents of /opt/superna/sca/data/eventWebhook.json file from Eyeglass. After updating, put the contents of this file back into the same location.

  • DS-2166: Easy Auditor - Finished reports cannot load if RWS_ONLY_CFG=true.
    Attempting to load finished EA reports while RWS_ONLY_CONF=true results in an error and puts Eyeglass into a state that prevents pages from loading.

    info

    Workaround: None available currently.

Multiplatform

  • DS-1874: [Isilon, VAST] NFS lockout behavior is not solid on multiplatform.
    Lockout jobs may be missing shares/exports if run quickly after a restore job.

    info

    Workaround: Wait for the replication job to run after restore before running a lockout job, or run the lockout job again after replication if it seems shares/exports were not locked out.

  • DS-2127: [VAST, QUMULO] RSW NFS events state not respected.
    RSW NFS event settings are not respected for VAST and Qumulo. If NFS events are set to false, Qumulo/VAST events will still be created, and if NFS events are set to monitor, the events will not have the correct state.

  • DS-2004: Not all NFS Exports are locked out when using source IP in the Ignore List.
    If a client IP is configured to be ignored for VAST in the Ignored List, and another platform triggers an event from that IP, the VAST NFS exports will not be locked out during the multiplatform lockout process.

  • DS-2067: Monitor state is not preserved when raising events from multiple platforms.
    If an event is raised with Monitor state due to monitor mode while multiplatform support is enabled, raising signals on the same event from another platform on a path not in the monitor list removes the Monitor state.

VAST

  • DS-969: Monitor Only List - RSW events from added paths are received as warning/major/critical if the path is entered in the format 'tenant:/path/to/object'.
  • DS-1539: Query on root path is not returning any results.
    info

    Workaround: Remove a "/" character when adding the root path.

  • DS-1750: VAST is missing from the Action Event History lockout/restore lists.
  • DS-1750: VAST is missing from the Action Event History lockout/restore lists.
  • DS-2126: HBase-related services and containers are trying to start during cluster up for VAST-only systems.

QUMULO

  • DS-970: Monitor Only List - Username field is case sensitive.
  • DS-1720: Lockout job tries to lock out access on an Export that was removed.
  • DS-1725: Restore job for NFS does not remove a row in Host Access that was added during lockout.
    If a Qumulo NFS export is given read-access without an IP specified and locked out, when the export is restored, the host access rule that restricted access will not be removed.
  • DS-2131: Qumulo-only environment sometimes displays the SID instead of the username.
    info

    Workaround: Restarting SCA on Eyeglass fixes the issue.

PowerScale OneFS

  • DS-1051: NFS lockout does not lock out the export without an IP added.

ECS

  • DS-1056: CRM Recovered count is not updated until refreshed.

  • DS-1276: CRM cannot retrieve activity for IAM users.

  • DS-1753: RWD Ignored List/Monitor Only Settings - Cannot add path where the bucket name has an underscore.

DS 2.9.0 - Known Limitations

  • DS-1702: [PowerScale OneFS] We do not reinstate the permission list order on restore.
    When access to a PowerScale OneFS share is restored (in cases of user access across multiple users and shares), the permission type is restored but the order in which the user appeared in the Permission list is not restored to the state prior to lockout.

  • DS-1892: [ECS] RWD does not detect RSW event when user deletes more than one object at a time. Ransomware Defender does not raise events for ECS when multiple objects are deleted with a single action.