Forseti RC3 - The final stretch

Justin Jawad

unread,

May 29, 2018, 7:08:53 PM5/29/18

to beta-t...@forsetisecurity.org

Hi All,

We are now in the final stretch for getting Forseti 2.0 released!

We’ve got one last Release Candidate for you to help us test. If you can take some time to help us validate that it works in your environment it would be much appreciated!

I’m in. How do I test RC3?

Use this guide we’ve put together to install 2.0RC3
This testing guide will walk you through the testing we’d like you to do.
Questions should be sent to beta-t...@forsetisecurity.org
If you find bugs, open GitHub issues with the release-testing: 2.0 RC3 label
After you successfully run Forseti 2.0 RC3, complete this survey

What are the changes from Forseti RC2 to RC3?

There are many improvements and fixes in RC2. To name just a few:

Improvement to Inventory table with optimized schema and new indexes. Creating inventory and data model will be faster, as well as reducing storage on disk.
A new auth library that negates the use of a separate GSuite service account and key.
Forseti server does not need to be restarted to reload configuration or log level changes.
Forseti client now has commands to invoke the reloading.
Forseti VMs now run on the latest Ubuntu 18.04.
Complete Stackerdriver logs.
New scanners are added for audit log and enabled APIs.
Inventory data can be purged.
Cron jobs do not overrun each other.

What should I be aware of before testing RC3?

As this is a beta and you’re testing a release candidate, the underlying data-model of Forseti can still change during this period. Data inventoried and violations created during this RC will not necessarily be compatible with the data generated and used in the final version.

Unfortunately, RC3 installations can't be upgraded and you must do a fresh install.

When will Forseti Security 2.0 be available?

The target for the final release is the beginning of June 2018. After release, we’ll continue to support v1.x for a period of 90 days, but will no longer develop any features for it. We also won't be backporting any improvements into 1.x installations.

Thank you for helping to make Forseti better!

The team at Google supporting Forseti

Antoine Castex

unread,

May 30, 2018, 2:54:32 AM5/30/18

to justi...@forsetisecurity.org, Forseti Security Beta Testers

Hello

Great

I have 2 question :

Can we update rc2 to rc3 or is it better to install on a new project the rc3 and delete the rc2 ?

When you say :

Inventory data can be purged.

You mean we can purge the CloudSQL database, we will not have a bigggggg db ?

thanks

Cordialement / Best Regards

CASTEX Antoine

Google Cloud Platform Product Manager & Cloud Developer

Technology & Operations - Digital Factory

Group Information Systems & Technology (IS&T)

VEOLIA 30 rue Madeleine Vionnet / 93300 Aubervilliers / France

Bureau : 0 - Ouest - 137F

Direct: +33 1 85 57 70 91

Mobile: +33 6 10 93 63 49

www.veolia.com

--
You received this message because you are subscribed to the Google Groups "Forseti Security Beta Testers" group.
To unsubscribe from this group and stop receiving emails from it, send an email to beta-testers...@forsetisecurity.org.
To post to this group, send email to beta-t...@forsetisecurity.org.
To view this discussion on the web visit https://groups.google.com/a/forsetisecurity.org/d/msgid/beta-testers/CA%2B7sr7nN1xoC%3D63vtehPx7zga3sJxXLYOQJ2k6DS2OTp0XH4ag%40mail.gmail.com.

--------------------------------------------------------------------------------------------

This e-mail transmission (message and any attached files) may contain information that is proprietary, privileged and/or confidential to Veolia Environnement and/or its affiliates and is intended exclusively for the person(s) to whom it is addressed. If you are not the intended recipient, please notify the sender by return e-mail and delete all copies of this e-mail, including all attachments. Unless expressly authorized, any use, disclosure, publication, retransmission or dissemination of this e-mail and/or of its attachments is strictly prohibited.

Ce message electronique et ses fichiers attaches sont strictement confidentiels et peuvent contenir des elements dont Veolia Environnement et/ou l'une de ses entites affiliees sont proprietaires. Ils sont donc destines a l'usage de leurs seuls destinataires. Si vous avez recu ce message par erreur, merci de le retourner a son emetteur et de le detruire ainsi que toutes les pieces attachees. L'utilisation, la divulgation, la publication, la distribution, ou la reproduction non expressement autorisees de ce message et de ses pieces attachees sont interdites.

--------------------------------------------------------------------------------------------

Joe Cheuk

unread,

May 30, 2018, 12:02:57 PM5/30/18

to Castex, Antoine, justi...@forsetisecurity.org, Forseti Security Beta Testers

Hi Antoine,

The suggested way of installing RC3 is to start a new project and delete the old one (the RC2 project).

You are now able to purge your inventory data by either configuring the "retention_days" inside the forseti_conf_server.yaml file to the number of days you want to keep your data or you can run the `forseti inventory purge <RETENTION_DAYS>` command to purge the data manually.

If you have it configured in the yaml file, it will run every time the cronjob is executed so your database will always contain data for only the number of days you want to keep.

Hope that helps, please let us know if you have more questions!

Thanks,

Joe

To view this discussion on the web visit https://groups.google.com/a/forsetisecurity.org/d/msgid/beta-testers/CAKAsqRH4JKbsE5gWHFDDbo3Nbm6yyd4AdoSdN9TYsAF6YQBs2A%40mail.gmail.com.

Reply all

Reply to author

Forward