Changes and New Features

DDoS Protection

Added the UFM MAD Limiter security tool which mitigates Distributed Denial-of-Service (DDoS) attacks targeting the management node. For more information, refer to Appendix - MAD Limiter.

Fabric Validation Tests

Added two new fabric validation tests (Validate Nodes Firmware Version, Validate Switches CPLD Version) to check the CPLD and firmware versions for HCAs and switches. For more information, refer to Fabric Validation Tab.

OpenSM Traps

Added support for three new OpenSM traps (VPort P_key Violation, VPort Q_Key Violation, IB Mad Keys Periodic Update). For more information, refer to Threshold-Crossing Events Reference.

Pkey APIs

Enhanced the Pkey APIs to allow changing the partition name by accepting a pkey_name_prefix parameter. This prefix is written to the partitions.conf file. For more information, refer to PKey GUIDs Rest API -> Set/Update PKey GUIDs and Add GUID to PKey.

Bare Metal Cloud Mode

Defined and implemented the BareMetal Cloud mode in UFM for Cloud Service Providers (CSPs). For more information, refer to Default Bare-Metal Cloud Mode.

Improved Detection of Module Changes for Unmanaged Switches

Introduced an improved detection mechanism for PSU/fan removal events on unmanaged switches by generating a new fabric analysis report that runs every 2 minutes by default. The feature is disabled by default. For more information, refer to Faster Detection of Fan/PSU Removal on Unmanaged Switches.

Cable Temperature

Added support for displaying the cable temperature per cable transceiver of selected port. For more information, refer to Devices Window.

Periodic Key Updates

Added support for periodic key updates for M_Keys, CC, VS, and N2N keys. For more information, refer to Appendix – Security Features.

Cable Info for XDR Fabrics

Added support in UFM to display information for all four plane ports on XDR when 'Cable Info' is selected from the menu of an aggregated port. For more information, refer to Cables Window.

UFM License

Added support for the UFM license to support 3 MAC addresses (for UFM HA deployments). For more information, refer to Activating Software License.

UFM Rollback

Added the ability to revert back to or reinstall a backed-up specific historical version of UFM including configuration. For more information, refer to UFM Rollback.

LDAP Authentication

Added support for UFM LDAP-integration (allowing users to set LDAP for authenticating UFM users). For more information, refer to LDAP Authentication

UFM/SM Dynamic Configurations

Added the ability to update UFM, OpenSM, and SHARP configurations without needing to restart UFM, as well as the option to modify parameters while UFM is running. This feature includes a list of OpenSM and gv.cfg configuration parameters that can be updated dynamically without requiring a UFM restart. For more information, refer to Setting UFM Configurations Without Requiring UFM Restart.

Proxy Elimination

As of UFM Enterprise v6.21.0, proxy elimination is enabled by default, resulting in improved performance when accessing UFM plugin APIs compared to previous versions.

AI Mode

As of UFM Enterprise v6.21.0, UFM is optimized by default to enhance AI workload performance through the SM configuration. For more information, refer to Appendix – UFM AI Mode.

UFM Infra

Added support for the UFM Infra feature, which introduces a structured architecture where services are divided into two categories; UFM Infra and UFM Enterprise, each deployed differently based on functionality.

The feature allows fast availability (up to 3 seconds) of the UFM REST API after failover.

For more information, refer to UFM Infra. For Installation instruction, refer to Installing UFM Infra Using Rootless with Podman.

Deploying UFM Podman as Non-Root User: Added an automated script to seamlessly install/uninstall UFM as a non-privileged user.

REST-RDMA Plugin

1.0.0-39

Added support to run REST-RDMA client in Arm environment.

NDT Plugin

1.1.1-21

Added the ability to run on SELinux and rootless environment.

UFM Telemetry Fluentd Streaming (TFS) Plugin

1.1.1-1

Added the ability to run on SELinux and rootless environment.

UFM Events Fluent Streaming (EFS) Plugin

1.0.0-6

N/A

UFM Bright Cluster Integration Plugin

1.0.0-3

N/A

IB Link Resiliency Plugin

1.1.0-2

New Feature:

Added the ability to suppress duplicated events in shadow mode.

Added the ability to run on SELinux and rootless environment.

Bug Fix:

Resolved third-party dependency vulnerabilities in plugin – addressed CVE-2024-6345 (BDSA severity 7.9) (ref #4402643 ).

ClusterMinder Plugin

1.1.10

Added the ability to run on SELinux and rootless environment.

Sysinfo Plugin 

1.1.1

N/A

SNMP Plugin

1.0.0-3

N/A

Packet Level Monitoring Collector (PMC) Plugin

1.19.33

New Features:

• Added support for m_key_per_port

• Added the ability to run on SELinux and rootless environment.

Bug Fixes:

• Fixed incorrect threshold value for Fast Recovery events.

Limitation:

• The PMC plugin does not support environments where the SM is configured with vs_key_enable, cc_key_enable, and/or n2n_key_enable settings.

GNMI-Telemetry Plugin

1.3.6-2

New Features:

• Added the ability to fetch telemetry serially instead of in parallel.

• Aligned the certificate management directory with the UFM container flag local-cert-dir.

• Added support for subscribing to UFM health KPI notifications.

• Added support for subscribing to telemetry collection completion notifications.

• Added the ability to run in SELinux and rootless environments.

Bug Fixes:

• Resolved an issue where unexpected values were received for down ports during link-down testing (ref #4320510).

• Resolved an issue where sessions were disconnected when UFM restarted (ref #4379789).

• Protected gNMI from incorrect telemetry data that could cause plugin restarts (ref #4445409).

• Resolved an issue where requests for counter groups failed if telemetry was down during plugin startup.

• Resolved an issue where gNMI failed to stream data if the request was initiated before any successful collections.

• Fixed an issue with duplicated telemetry configuration by introducing a global configuration for generic telemetry settings (retry_attempts and retry_interval).

• Fixed the gNMI version display in logs.

UFM Telemetry Manager (UTM) Plugin

1.21.3

Added the ability to run on SELinux and rootless environment.

UFM Consumer Plugin

1.0.0-16

N/A

Fast-API Plugin

1.0.4-2

• Added support for UFM Infra.

• Added the ability to run on SELinux and rootless environment.

UFM Light Plugin

1.1.0-2

N/A

Key Performance Indexes (KPI) Plugin

1.0.8-2

New Feature:

Added the ability to run on SELinux and rootless environment.

Bug Fix:

Resolved third-party dependency vulnerabilities in plugin – addressed CVE-2024-6345 (BDSA severity 7.9) (ref #4402643 ).

UFM Events Grafana Dashboard Plugin

1.0.2-0

Limitations:

• Not supported on UFM Gen 2.0

• FluentD fails with RHEL9 OS.

Log Streamer Plugin

1.0.1-2

Introduced the Log Streamer plugin which enables users to stream external logs (such as OpenSM, SHARP, etc.) to a remote syslog server.

GNMI NVOS Events Plugin

1.0.1-1

Introduced the GNMI NVOS Events plugin, a standalone Docker container managed by UFM. Its main role is to collect GNMI events from NVOS switches and relay them to UFM as external events.

Unmanaged Switch Dump (USD) Plugin

1.0.1-0

Introduced the USD plugin which retrieves system collections from unmanaged NVIDIA switches, compiles the data into files, and transfers these files to the same remote destination used for data collection from managed switches.