8.5.101.97

Configuration Server Release Notes

What's New

This release contains the following new features and enhancements:

• Configuration Server (CS) now supports optional HTTP port and exposes all currently supported metrics (available via log stat file) represented in output that can be obtained via GET command from that endpoint in Prometheus metrics format. For information on the feature “statistics log file”, refer to the section Statistical logging in the Management Framework Deployment Guide (MFWK-24051).

Resolved Issues

This release contains the following resolved issues:

When encrypting the configuration database password that is stored in the CS startup configuration file of the master Configuration Server, CS now uses OAEP padding instead of the previously used PKCS 1 padding. This enhances security in storing the password by eliminating known vulnerability of PKCS 1 padding. The existing configuration files containing passwords, encrypted with PKCS 1, can be used with no changes. You may update configuration files to re-encrypt the password using OAEP. This can be done by executing the procedure described in the section Encrypting the Configuration Database Password of the Management Framework Deployment Guide.

The new startup option in the configuration file Configuration Server Section is automatically created when CS is forced to encrypt db password.

ecryption-padding
Valid Value: OAEP - password is encrypted using OAEP padding
Default: If the password is encrypted, PKCS 1 padding is used
Changes Take Effect: After restart
(MFWK-24175)

Upgrade Notes

No special procedure is required to upgrade to release 8.5.101.97.