VMware NSX for vSphere 6.3.3 Released
VMware has released NSX for vSphere 6.3.3, this is primarily bug fixes, and a few new things.
What's new:
Guest Introspection supports Windows Server 2016: See "Guest Introspection for Windows" below for requirements.
NSX Controller OS change: The underlying operating system for the NSX Controller is now Photon OS. See Controller Upgrade in the Upgrade Notes for NSX Components section for details on upgrading controllers to NSX 6.3.3.
New NSX API to retrieve a list of all unresolved alarms on NSX Manager: Some system events trigger the creation of alarms. Some alarms, along with other alerts, are displayed on the NSX Dashboard. You can view all unresolved alarms with GET /api/2.0/services/systemalarms. See the NSX API Guide for more information.
Crypto Module Changes Affecting FIPS Compliance
-
NSS and OpenSwan: The NSX Edge IPsec VPN uses the Mozilla NSS crypto module. Due to critical security issues, NSX 6.3.3 moved to a newer version of NSS that has not been FIPS certified. VMware affirms that the module works correctly, but it is no longer formally validated.
-
NSS and Password Entry: The NSX Edge password hashing use the Mozilla NSS crypto module. Due to critical security issues, NSX 6.3.3 moved to a newer version of NSS that has not been FIPS certified. VMware affirms that the module works correctly, but it is no longer formally validated.
-
Controller and Clustering VPN: The NSX Controller uses IPsec VPN to connect Controller clusters. The IPsec VPN uses the VMware Linux kernel crypto module (Photon 1 environment), which is in the process of being CMVP validated.
See the full release notes here: https://docs.vmware.com/en/VMware-NSX-for-vSphere/6.3/rn/releasenotes_nsx_vsphere_633.html
NSX-vRealize Orchestrator Plug-In 1.2.0
VMware also released an new NSX plug-in for vRealize Orchestrator.
See the release notes here: http://pubs.vmware.com/Release_Notes/en/nsx/suite/releasenotes_nsx_vro_120.html