Help Center> Cloud Bastion Host> What's New
View PDF

What's New

The following tables describe the features of each Cloud Bastion Host (CBH) version and the corresponding documentation updates.

November 2020

No.

Feature

Description

Phase

Document

1

O&M expert service brought offline

The O&M expert consulting service is no longer available, including configuration guidance, technical consulting, and O&M planning.

Commercial use
  • None

August 2020

No.

Feature

Description

Phase

Document

1

CBH system V3.3.15.0 available
  • Remote Azure AD authentication is added.
  • More system O&M functions are optimized.

Commercial use

2

Remote Azure AD Authentication

After remote Azure AD authentication is configured, Microsoft third-party service user accounts can be used to remotely log in to the CBH system.

Commercial use

3

Basic 500 and enhanced 500 editions available

You can select a CBH edition from the eight editions based on your asset type and scale.

Commercial use

June 2020

No.

Feature

Description

Phase

Document

1

Fifteen actions added for fine-grained permission management of CBH instances

This feature allows you to create a user group on Identity and Access Management (IAM) and assign policies or roles to the user group to grant different management operations or read-only permissions to users. In addition, you can create custom policies on IAM to grant a specific permission to a certain user to perform certain operations, such as purchasing CBH instances, upgrading CBH instance versions, and expanding CBH instance editions, meeting the minimal permission management requirements.

Commercial use

2

CBH system V3.3.10.0 available
  • Backing up logs with OBS buckets is allowed.
  • CBH system version update notifications are pushed forcibly.
  • Database O&M functions are enhanced.
  • More system O&M management functions are optimized.

Commercial use

3

Remote log backup to OBS buckets

This function allows you to back up CBH system data and history session logs to an OBS bucket, ensuring DR security of O&M data.

Commercial use

4

CBH system version update reminding

This function notifies you of system version updates so that you can upgrade a CBH instance version in a timely manner.

Commercial use

5

Support for Toad for Oracle

This function allows you to call the Toad for Oracle client for O&M, making database O&M more simple.

Commercial use

May 2020

No.

Feature

Description

Phase

Document

1

CBH system V3.3.7.0 available
  • Remote LDAP authentication is added.
  • HUAWEI CLOUD SMS gateway is supported in CBH.
  • More system O&M functions are optimized.

Commercial use

2

Remote LDAP authentication

After remote LDAP authentication is configured and LDAP server users are added, these user accounts can be used to remotely log in to the CBH system.

Commercial use

3

Outgoing through HUAWEI Cloud SMS gateway

Apart from the built-in gateway for SMS verification, HUAWEI CLOUD SMS gateway is available for verification and notification.

Commercial use

December 2019

No.

Feature

Description

Phase

Document

1

CBH system V3.3.0.0 available
  • Support for cross-version upgrades
  • License expiration reminding is supported.
  • Mobile number binding function is enhanced.
  • More system O&M functions are optimized.

Commercial use

2

Support for cross-version upgrades

CBH 3.2.11.0 and later versions can be directly upgraded to the latest system version to meet different O&M management requirements.

Commercial use

3

License expiration reminding in the CBH system

The CBH system reminds you of license expiration so that you can renew the license in a timely manner.

Commercial use

4

Forcible binding of user mobile numbers

When a user logs in to the CBH system for the first time, the user is required to bind a mobile number for password resetting.

Commercial use

November 2019

No.

Feature

Description

Phase

Document

1

CBH system V3.2.22.0 available
  • The IPv6 protocol verification function is added.
  • Batch importing of HUAWEI CLOUD ECSs is enhanced.
  • More system O&M functions are optimized.

Commercial use

2

Support for IPv6 address verification

The CBH system supports IPv6 addresses. When you add a host resource, you can select IPv4 or IPv6 address for it.

Commercial use

3

Importing HUAWEI CLOUD ECSs in multiple regions

You can add HUAWEI CLOUD ECSs in 11 regions in batches.

Commercial use

October 2019

No.

Feature

Description

Phase

Document

1

CBH system V3.2.20.0 available
  • Synchronizing AD domain users is enhanced.
  • More system O&M functions are optimized.

Commercial use

2

Support for hierarchical synchronization of AD domain users

When you synchronize AD domain users, you can synchronize them by hierarchy and node in the department structure.

Commercial use

September 2019

No.

Feature

Description

Phase

Document

1

Enhanced editions available

You can select a basic edition or enhanced edition.

  • Basic editions provide identity authentication, permission control, account management, and security audit.
  • In addition to the functions of the basic editions, enhanced editions offer automatic O&M and database O&M audit.

Commercial use

August 2019

No.

Feature

Description

Phase

Document

1

CBH system V3.2.18.0 available
  • Support for RADIUS mobile OTPs
  • More system O&M functions are optimized.

Commercial use

2

Identification of third-party RADIUS mobile one-time password (OTPs)

The third-party RADIUS mobile OTPs can be used for login authentication.

Commercial use

July 2019

No.

Feature

Description

Phase

Document

1

CBH system V3.2.16.0 available
  • Database O&M audit
  • Key database operations can be audited.
  • Remote backup through FTP/SFTP server is added.
  • More system O&M functions are optimized.

Commercial use

2

Database O&M audit

By managing DB2, MySQL, SQL Server, and Oracle database resources, you can monitor and audit the entire database O&M process.

Commercial use

3

Key database operation audit

You can create database control policies to dynamically authorize high-risk database operations, ensuring the security of sensitive database information and preventing key information loss and leakage.

Commercial use

4

Remote log backup to the FTP or SFTP server

After you configure remote backup of the FTP/SFTP server, the CBH system automatically backs up system configurations and history sessions to the FTP/SFTP server, ensuring DR security of O&M data.

Commercial use

November 2018

No.

Feature

Description

Phase

Document

1

CBH system V3.2.8.0 available
  • Hosts configured with the Rlogin protocol can be managed.
  • The HTML5 O&M UI is optimized.

Commercial use

2

Rlogin host O&M audit

You can use CBH to monitor and audit the entire remote O&M process of Rlogin host resources.

Commercial use

August 2018

No.

Feature

Description

Phase

Document

1

CBH system V3.2.0.0 available
  • The USB key and dynamic token login authentication methods are added.
  • Automatic password change for managed accounts
  • Automatic synchronization of managed accounts
  • Automatic resource O&M
  • More system O&M functions are optimized.

Commercial use

2

USB key and dynamic token login authentication

More login authentication methods are available. You can issue a USB key or dynamic token and configure multi-factor authentication for login authentication.

Commercial use

3

Automatic password change for managed accounts

CBH allows you to configure password change policies to let the system automatically change passwords of managed accounts.

Commercial use

4

Automatic synchronization of managed accounts

You can configure an account synchronization rule to let the system automatically capture the managed accounts of host resources. This eliminates sensitive information leakage caused by manual account synchronization.

Commercial use

5

Automated O&M

This version adds the fast O&M module to simplify repeated manual O&M workloads to improve O&M efficiency.

Commercial use

Version Changes

For more information about version changes of CBH, view PDF.