Limitations in 5.3.1

(RESOLVED IN 5.3.4) ORION-281567: The Automatic Upgrade of Drive Firmware feature has been disabled.

ORION-280966: Having imported a JSON configuration file in VAST Cluster Install, you need to manually verify that all the populated fields have expected values. Sometimes, depending on the cluster configuration and environment, some of the fields are not populated as expected during the import.

ORION-242658: BMC firmware upgrades are not supported for Supermicro Genoa CNodes.

ORION-242331: VAST Web UI lets you set the BMC Firmware and Force options for an upgrade at the same time, although forced BMC upgrades are not allowed. If the Force flag is set, BMC upgrade is not performed.

ORION-222648: NDU that includes automatic adjustment of CNode CPU isolation settings (isolcpus) is not supported for EBoxes.

ORION-214559: A BMC upgrade cannot be performed with an inactive CNode that has been powered off.

(RESOLVED IN 5.4.0) ORION-244837: The cluster networking configuration script (configure_network.py) does not support configuring CNode Port Affinity for Dell EBoxes.

The following limitations apply when implementing L3 networking:

ORION-208004: Enabling VAST OS boot drive encryption requires that the node is inactive. Enabling the encryption on an active node may cause a long reboot sequence.

Quotas are not enforced on replication destination directories under a protected path. For example, if the protected path is /ppath, a quota on /ppath/yourdir is not enforced.

The prioritization flag is supported for view QoS policies. It cannot be set for user QoS policies.

S3 (including Kafka and VAST Database) and block storage I/Os are not calculated as part of the cluster-wide maximum write bandwidth limit.

Some high-priority optimizations are applied to NFSv3 only.

When the cluster-wide maximum write bandwidth is set, the actual performance may be ±15% of the expected performance.

Use of QoS with RDMA is not supported.

ORION-115336: If one creates an NFSv4.1-only view and mounts it, and then creates its parent view with NFSv3 only, IO operations on the NFSv4.1-only view succeed but mounts are not allowed.

In rare cases with large numbers of files and directories, the existence of a view with Global Synchronization enabled under a protected path can block the removal of the protected path.

ORION-169707: When the Hyper-V management tool tries to list VAST Hyper-V SMB shares on an SMB server, the The RPC server is not available error can occur if the SMB server is specified using its FQDN. To avoid this error, specify the IP address of the SMB server instead of the FQDN.

ORION-160323: After updating permissions for an SMB share in Windows Explorer, a duplicate SMB share can be displayed. The duplicate SMB share disappears upon a refresh (F5).

ORION-134730: An attempt to restore a file can fail if after the restore has started, a quota is set on the path where the file resides.

An object to be uploaded via a S3 presigned POST request must have only ASCII characters in its name.

A POST policy (used for S3 presigned POST requests) can be up to 4800 bytes.

S3 with proxy clients is not supported.

(RESOLVED IN 5.3.2) ORION-272562: By default, a newly installed cluster is configured to fail S3 requests that contain unsupported headers. If you want to alter this behavior and configure the cluster to ignore unsupported headers instead of failing the request, contact VAST Support.

ORION-197281: VAST Cluster disables bucket logging set on a bucket from which data is synchronously replicated to another bucket once you set up bucket logging on the replication destination bucket and configure it to use a different logging destination bucket.

ORION-190674: Once created, an S3 bucket cannot be renamed or moved to a different path. Thus, for example, if you try to change the bucket’s path when modifying a view in VAST Web UI, the change does not take effect and the view will still be listed with the old path.

The following limitations apply when using S3 Indestructible Object Mode:

ORION-143808: S3 versioning is not supported with global snapshot clones. An attempt to put a versioned object to a bucket at the global snapshot's destination path fails with an internal error.

For Rocky Linux-based clients, VAST recommends that the client uses Rocky Linux 9.4 or later.

If a host defined on the VAST cluster does not have any volumes mapped to it, NVMe auto-discovery does not show this subsystem.

A view that is used to expose block storage cannot have other storage protocols enabled.

You cannot enable or disable block storage support on an existing view. Block storage support can only be enabled for a view during view creation and cannot be disabled afterwards.

Block devices can be created on empty directories only.

Nesting of a block view inside an existing block view is not allowed.

The host NQN cannot be modified. To change the NQN, you need to remove the host and then add and map it anew.

When using the VAST Web UI or CLI options to bulk create volumes or hosts, the number of items to be created cannot exceed 256. When mapping hosts to volumes, up to 256 items can be mapped at a time.

The following VAST capabilities are not available with block views:

Snapshots on local protected paths are allowed but replication on non-local protected paths is not supported.

An attempt to remove a volume that has snapshots may cause errors for volume objects of snapshots of that volume, if they exist.

The maximum IO block size is limited to 1MB (4GB for unmap).

ORION-216379: When VAST protocol auditing is enabled on a user-impersonated view, only UID of the original user is included in the log. The user's login name and SID are not included.

(RESOLVED IN 5.3.3) ORION-211474: The Create permissions for the Logical realm are required to access the VAST Audit Log via VMS (in VAST Web UI: DataBase -> VAST Audit Log).

ABAC is supported on views controlled with SMB, S3 Native and Mixed Last Wins security flavors. ABAC is not supported with NFS flavor.

ABAC is not supported with NFSv3.

ABAC tags cannot be set on the cluster’s root directory (/).

Once assigned, you cannot edit or remove the ABAC tags of a view. Assigning new ABAC tags to an existing view or directory (storage path) is not allowed.

After a child view inherits ABAC tags from the parent view, you cannot update or remove the ABAC tags on the child view.

If you create a view for a directory that already exists, ABAC tags from the existing directory are assigned to the newly created view. In this case, there can be a delay between the view creation time and the time when the view's ABAC tags can be displayed.

If a user does not have any ABAC permissions, the user still can mount an NFSv4 export or map a SMB share to a local drive, but the user is not allowed to perform any operations on the files or directories.

ORION-163697: When an SMB user accesses a file for which the user has ABAC set to read-only, a lock is placed on the file although the user does not have read/write permissions for the file.

If a tenant has ABAC-tagged views, you cannot change or remove the Active Directory provider configured for the tenant.

When using NFSv4, it is not allowed to create hardlinks in views that have ABAC tags.

When using S3:

A directory under which an ABAC-tagged view exists, cannot be moved to the Trash folder.

Bulk permission updates are not available for ABAC-tagged views.

Lifecycle rules cannot be set for files or directories with ABAC tags.

The following limitations apply when using VAST Event Broker:

The maximum path length supported by VAST Catalog is 1024 characters.

(RESOLVED IN 5.4.0) When VAST Catalog is enabled, replication is limited to two peers (group replication is not supported with VAST Catalog). 

(RESOLVED IN 5.4.0) VAST Catalog must be disabled before a protected path can be deleted. 

ORION-197741: VAST Catalog cannot be enabled on a cluster that uses encryption keys managed through EKM, including per-tenant and per-path encryption keys.

View properties are not supported.

Queries to a view must include full table names.

Redefining a view is supported for Spark clients only.

User-defined column names and comments are lost if the schema of the query changes when redefining a view.

Nested data types are not supported.

ORION-208123: Local user accounts are not subject to replication.

The following limitation applies to VAST Database asynchronous replication:

The following limitations apply to synchronous replication for S3:

NFSv3, SMB and S3 access protocols are supported. NFSv4 is not supported.

If a view is configured with both NFSv4 and SMB, it must be controlled with the NFS security flavor.

VAST Database is not supported.

Lease expiration time can only be set when creating a global access protected path. You cannot change lease expiration time when you modify a global access path.

VAST Catalog does not provide information on the cached data on the remote cluster.

ORION-194805: Applications that use SMB2 Byte Range Locks are not supported when the SMB client is connected via a remote Global Access protected path. Examples of such applications are Microsoft Office suite on macOS, Microsoft Hyper-V, AutoDesk 3ds Max and some Adobe Premiere plugins.

ORION-194613: If some files have additional hardlinks, the amount of bytes reported as prefetched can be higher than the actual amount prefetched.

The following limitations apply when using Global Access for S3 buckets:

ORION-145141: Creating a tenant with EKM encryption is not supported on VoC clusters.

ORION-113036: After you reregister the same VoC cluster in Uplink, information about the previously registered instance of this cluster is no longer available in Uplink.

VAST DataSpace requires that each cluster participating in the inter-connection is running VAST Cluster 5.0 or later.

ORION-135966: The inter-connecting clusters must have connectivity to each other through the clusters' management networks.  

ORION-132073: When you remove a VoC cluster from a Multi-Cluster Manager cloud service instance (using the removal button on the cluster's card ()), the VoC cluster is terminated. There is no option to remove a VoC cluster from Multi-Cluster Manager without also terminating it. (In the VAST DataSpace page in the VAST Web UI, the button removes the VoC cluster from VAST DataSpace and does not terminate it.)

ORION-202335: If the cluster has Active Directory domain auto-discovery enabled, the discovered domains are kept in cache for quite a long time. If you modify an existing provider's configuration while auto-discovery is on, VMS may still report the old cached entries. To avoid this, rerun auto-discovery or remove and re-add the provider.

ORION-195524: Following a cluster recovery and while the Active Directory provider is still inaccessible, VAST Cluster can resume IO of provider users if they use NFSv3 or NFSv.4.1 with NTLM authentication. IO of provider users accessing through SMB or NFSv4.1 with Kerberos authentication is not resumed during this period.

ORION-187136: Identity policies are replicated as disabled to the destination peer, where if needed, they can be enabled manually.

ORION-187936: Joining/leaving an Active Directory domain may take longer compared to previous versions.

ORION-152475: An access denied error is returned for NFSv3 or NFSv4 requests if they are checked against an identity or bucket policy with an s3:ExistingObjectTag condition statement in it.

ORION-143944: When using Kerberos/NTLM Authentication to authorize SMB users from non-trusting domains, the DOMAIN\username format cannot be used to specify users of remote domains. The username@domain format must be used instead.

ORION-134299: When the tenant is set to use Kerberos/NTLM authentication to authorize SMB users from non-trusting domains, both NFS and SMB must use the native SMB authentication (Kerberos), and not Unix-style UID/GIDs.

ORION-141763: Before enabling or disabling NTLM authentication, you need to leave the cluster's joined Active Directory domain. After NTLM authentication is enabled or disabled, rejoin the domain.

The following limitations apply to Multi-Forest Authentication:

ORION-212118: If a wrong VMS authentication token is passed, the cluster responds with 403 FORBIDDEN but not with 401 UNAUTHORIZED.

Tenant client metrics can only be collected for NFSv3 and NFSv4.

ORION-187584: An empty realm (which does not contain any objects) cannot be assigned to a role.

ORION-131386: When there is a parent directory that has a very large number of child directories, a total of children’s capacity values displayed in the Capacity page can exceed the capacity value shown for the parent directory.

The DBox HA feature cannot be enabled on new installations of VAST Cluster 5.3.

ORION-201807: P5316 QLC SSDs running a firmware version of ACV10200 may cause performance degradation if used together with the Flash Write Buffers functionality. To avoid performance impact, upgrade the firmware to version ACV10203.

ORION-169078: VMS does not provide an indication of the link state of the external management port on a CERES DTray.

The following limitations apply to EBoxes:

The following limitations apply to conversion to write buffer RAID: