With Objects 1.0.1, direct access to all the infra VM (created during Microservice Platform deployment) is disabled. Very important security improvements.
All the new Objects deployments will have this feature enabled by default, but for existing deployment, we will have to follow a couple of steps in order to protect direct access.
It’s recommended that you follow below procedure in order to secure access to Microservice Platform virtual machines.
Post Objects Manager and MSP Controller upgrade, login to Nutanix Prism Central via ssh.
-
Verify if both Objects service manager and msp-controller service is upgraded to latest version.
You should see version 1.0.1 should be appended to both docker services.
You can also navigate to LCM page on PrismCentral and you should be able to see MSP and Objects Manager service version is 1.0.1
-
Now that we have upgraded both the controller services. Let's get your Microservice Platform locked down.
-
Execute - “mspctl cluster_list” command on Prism Central SSH session. You should see something similar output. It should show all the clusters you deployed so far.
- Get the cluster_uuid of each Objects Instance, and then execute:
- If you have multiple Objects instances, then simple for loop can enable lockdown on all instances.
You are all set to use latest Objects 1.0.1 with tons of improvements and improved security.