Backup management across multiple storage targets — including remote S3-compatible destinations. Policies can sync automatically between targets, eliminating the need for manual duplication and ensuring consistency. Fine-grained backup mangament and overview of all backups and failures with repository overview in target details.
Provision multiple VMs simultaneously with automated configuration, image selection, and network setup, reducing deployment time.
Added support for configuring cache devices and filesystem usage after disk creation, giving users more flexibility in performance tuning.
Introduces certificate creation, renewal, and assignment directly through the portal, with backend automation of secret rotation and expiry tracking.
Establish encrypted point-to-point VPN tunnels between Cloudspaces using WireGuard for secure and low-overhead cross-region communication.
For more flexibility when deploying VMs, we’ve added support for parameterized user data templates. Image publishers can now attach templates to their VM images, defining configurable fields that users can populate during VM creation.
A major enhancement that empowers administrators to define pricing per resource and manage customer quotas directly through the portal. This feature simplifies cost control and introduces full self-service economic governance for deployments.
Role-based access control support for individual disks and objectspaces, improving data security segmentation.
Allows admins to configure and manage external authentication providers using the OpenID Connect (OIDC) protocol. Once set up, customers can authenticate through their own identity systems, such as corporate SSO or third-party providers. Each OICD provider can be configured with different scopes and claims, enabling fine-grained access control and can be enabled or disabled seperately
Enhanced ingress and load balancer configuration, including support for external IPs, annotations, and nested cloudspace exposure.
manage ingress controllers at the worker pool level—enabling optional deployment and the ability to add or remove controllers per pool. Load balancers support for external Cloudspace IPs, with the option to specify the external network via service annotations. Additionally, both management and Kubernetes clusters can be deployed in nested Cloudspaces, with the ability to select the external network used to expose the Rancher UI.
Support for Kubernetes version 1.32 for newly created clusters, bringing the latest upstream enhancements and security patches. In addition, clusters deployed within a single Cloudspace now automatically place master nodes in an anti-affinity group, improving availability by spreading nodes across different hosts.
choose to use local storage for Kubernetes master node disks and Rancher data disks. This improves performance for workloads requiring low-latency disk access while still allowing flexibility depending on deployment requirements.
Multilingual support in the portal. Users can submit translation suggestions directly through the interface.
Introduced buffer storage layer to Objectspaces for improved write performance and burst traffic handling.
Users can now attach high-performance NVMe disks to VMs directly from the portal, ideal for latency-sensitive workloads.
VMs in Rancher management clusters are now also distributed using an anti-affinity group when deployed together, reducing the risk of a single point of failure in high-availability setups. Rancher version is also updated to 2.103
Deploy Rancher management clusters with full VCO integration, IAM support, and flexible HA or single-node setups.
support for Secure Boot by introducing a new boot type: uefi-secure-boot. This enhances VM integrity by ensuring only signed, trusted software is loaded during the boot process.
Enables multipart uploads, tagging, and centralized handling of image definitions. This improvement streamlines how VM images are created, updated, and organized.
Support for creating and managing Windows 11 virtual desktops through configurable VDI user profiles. Each profile defines machine specs, VM templates, user roles, cloud-init scripts, vGPU settings, and session behaviors—whether single-use or dedicated. Customers can control standby pools, backup policies, and lifecycle rules including recycling time and post-session availability. A downloadable agent for Windows, macOS, and Linux initiates WireGuard tunnels and launches RDP sessions via the dedicated VDI landing page.
Users can reserve and attach vGPU profiles directly when creating VMs, with automatic billing and cleanup. Admins can define GPU profiles on G8 nodes and monitor usage seamlessly.
Secure remote access to Cloudspaces using WireGuard. Provides encrypted tunnels ideal for remote administration.
enable a virtual Trusted Platform Module (vTPM) when creating a VM through the portal. vTPMs provide each VM with a secure, isolated environment for storing encryption keys and supporting features like secure boot. Once enabled, managing the VM — including actions like creation, restart, or deletion — will require a password, enhancing overall security and compliance.
