Turbot v5 Update Digest for 6 Oct to 12 Oct 2020

Current Recommended Versions

  • Turbot Enterprise (TE) 5.30.5
  • Turbot Enterprise Database (TED) 1.11.0
  • Turbot Enterprise Foundation (TEF) 1.26.3
  • Turbot Terraform Provider 1.6.3
  • Turbot CLI 1.24.2
  • Turbot Mod 5.28.1

Note: Turbot Customer Support recommends running the above versions as a “known good” configuration that incorporates the latest bug fixes and optimizations.

Turbot Enterprise

Highlights

  • Faster summary data loading for smoother browsing of resources, controls and policies.
  • Resource deletion is much faster, and scales to much larger environments.
  • Optimized performance across many GraphQL APIs and operations through careful analysis of queries and better data models introduced in v5.29.0.

Enterprise Highlights

  • Workspace upgrades can now check that they are coming from a minimum required version, smoothing the process for key release milestones when a workspace is far behind.
  • Worker lambdas now handle four tasks in parallel instead of 2, optimizing utilization.
  • Terraform stack container is much smaller, for faster startup and improved performance.

Alerts

Upgrade path to get to 5.30.5 from a TE version before 5.29.12:

1. TEF 1.26.3

2. TE 5.29.14

3. Make sure that Turbot > Workspace > Migration control is in ok. Pause on this TE version till the migration control indicates “Migration Complete”, see screenshot.

4. TE 5.30.2

5. Make sure that Turbot > Workspace > Migration control is in ok. Pause on this TE version till the migration control indicates “Migration Complete”, see screenshot.

6. TE 5.30.5

AWS Mods

Highlights

  • New policies or changed policy names in: aws-vpc-internet, aws-docdb, aws-lightsail, aws-ec2
  • Initial release: aws-quicksight
  • Continued roll-out of changes to Region [Default] policy renaming, CMDB > Discovery separation, CMDB set to Skip.
  • In aws: An account’s CMDB data now includes the information about the organization it belongs to. This is available under the Organization property.
  • In aws-vpc-internet: A new policy, AWS > VPC > Internet Gateway > Active > Attached to manage (un)attached Internet Gateways without a calculated policy.
  • In aws-docsdb: We’ve removed permission policies for AWS > Doc DB since they were added incorrectly. To use AWS > Doc DB permissions, you will now need to enable the AWS > RDS permission policies. This will only have an impact if using AWS > Turbot > Permissions.
  • In aws-cloudwatch: We’ve fixed an issue for trails where the CloudWatchLogsRoleArn, CloudWatchLogsLogGroupArn and LatestCloudWatchLogsDeliveryTime properties were not updating correctly after a trail’s CloudWatch logs configuration was modified.
  • In aws-lightsail: New support Lightsail Loadbalancers
  • In aws-ec2: Detection and managment of the attachment status of a volume using the AWS > EC2 > Volume > Active > Attached policy. #### Alerts
  • None

Release Notes

Azure Mods

Highlights

  • We’ve made improvements to how Active controls interact with CMDB policies and controls for more reliable active checks. Now, if a resource’s CMDB policy is set to Skip, its Active control will move to invalid to prevent the Active control from making a decision based on outdated information. Also, Active controls will now wait until the resource’s CMDB control has run at least once to ensure the required data is available.
  • In azure-cisv1: Proper handling when an app didn’t use Python on a Linux or Windows platform.

Release Notes

GCP Mods

Highlights

  • New policies or changed policy names in: gcp-computeengine
  • Management of GCP Compute External IPs.
  • Management of unattached GCP Compute Disks with GCP > Compute Engine > Disk > Active > Attached.

Release Notes

Turbot Mods

Highlights

  • New policies or changed policy names in: turbot

Alerts

  • The Turbot mod requires TE 5.31.0. If installed on a earlier TE, there will be two Turbot Errors until the workspace is upgraded to 5.31.0. These two errors are not harmful.

Release Notes

  • Added: Event Monitor control to restart stalled runnables with defaultInterval attribute.
  • Added: Runnable Monitor control to restart error & tbd runnables that have lost their retry schedule.
Was this article helpful?
0 out of 0 found this helpful