This release note and the software that accompanies it are (c)Copyright 2025
Broadcom Inc or its suppliers, and may only be installed and used in accordance
with the license that accompanies the software. All rights reserved.

This Software is furnished under license and may only be used or copied in accordance with
the terms of that license. No license, express or implied, by estoppel or otherwise,
to any intellectual property rights is granted by this document. The Software is subject
to change without notice, and should not be construed as a commitment by Broadcom Inc
or its suppliers to market, license, sell or support any product or technology.
Unless otherwise provided for in the license under which this Software is provided,
the Software is provided AS IS, with no warranties of any kind, express or implied.
Except as expressly permitted by the Software license, none of its suppliers assumes any
responsibility or liability for any errors or inaccuracies that may appear herein.
Except as expressly permitted by the Software license, no part of the Software may be
reproduced, stored in a retrieval system, transmitted in any form, or distributed by any
means without the express written consent of Broadcom Inc.

=====================
Supported Controllers
=====================
Broadcom 3916 SAS3/PCIe4 Tri-mode RAID on Chip, SAS 3516 Ventura based MegaRAID and iMR, SAS 3108 (Invader) based MegaRAID and iMR, SAS 3008 (Fury) based HBAs,
Wellsburg & Lewisburg SATA chipset based Software RAID, SAS3816 based IOC, SAS3808 based IOC, SAS3008 based HBAs, Initiator-Target 3 (IT3) controller
9660 Family RAID Adapters, 9670 Family RAID Adapters, 9600 Family eHBA Adapters, 9620 Family eHBA Adapters

====================
Package Information
====================
LSA version = 008.016.008.000
OS supported = Windows Server 2022, Windows Server 2025, Windows 11 24H2 Client, Windows 11 25H2 Client.
Browsers = IE9 or later, Microsoft Edge 94.0, Firefox9 or later and Chrome16 or later
Language(s) supported = English

This package can be installed only on x64 system (or) Platform.

===================
Pre-Requisites
===================
1. Prior to the first time installation of LSA builds,if "openslp_2.0.0_beta2_x86 (or) openslp_2.0.0_0_x86 (or) openslp_2.0.0_0_x64" is installed in the server(s), please un-install it from
  "Control Panel".
2. As part of LSA Pre-Requisite, we will be installing OpenSLPv3.0.0 64bit if no other version of OpenSLP is present.
   Please ensure there are no older OpenSLP versions present.
   If user wanted to install on own, can download from http://www.openslp.org/download.html
   Please ensure we are installing 64 bit version of OpenSLP, during the manual installation.
3. LSA would install the following pre-requisites if not already installed.
      Microsoft Visual C++ 2010  x64 Redistributable  10.0.40219.1
      Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212   
4. For VMware ESXi 5.x, and 6.x to work with LSA, depending on your VMware ESXi environment, ensure latest SMI-S Provider is being installed from 7.9 releases.
	To deploy the MegaRAID SMI-S provider on an ESXi machine by using the VIB file provided by Broadcom, copy the VIB file or the offline-bundle.zip file to the ESXi machine.
	Use the esxcli file to load the MegaRAID SMI-S provider, and run the following command:
	ESXi# esxcli software vib install -v <local_file_path or file:///URL> --force
	NOTE :  A reboot is required after installing the SMI-S provider on VMware ESXi environment.
5. Steps to configure the ESXi server
   a) Ensure that the third-party application services like "slpd and sfcbd-watchdog services are up and running on ESXi server".
   	(/etc/init.d/slpd status & /etc/init.d/sfcbd-watchdog status).
   b) Ensure that the port 2463 is not blocked by firewall.
   c) sfcb time-out socket error in CIMOM server results in AEN blocked by sfcb-cimom and may lead to duplicate entries in client with incorrect event description.
      To get rid of this, user is required to restart sfcb service in VMware ESXi.
      Command to restart : - esxcli system wbem set -e 0
						   - esxcli system wbem set -e 1
      The same has been raised against VMware. Refer to the link further details[https://www.vmdev.net/tracker/tracking/linkid/prpl1235/remcurreport/true/template/ViewIssue.vm?id=LSDM89&readonly=true]
   d) Multi-subnet Configuration : When gateway is part of multiple subnet and discovered Vmware is part of one of these subnets then it is the responsibility of the user to configure both LSA Gateway and VMware under same subnet
     (or) workaround this with adding irrelevant subnet IP address to LSA configuration file (conf\LSA.conf -> private_ip_range=*) to avoid registering the wrong IP to VMWare.
   e) CURL error in CIMOM server results in AEN blocked by CIMOM server to upper layer(CIMProvider-->LSA). This can happen if servers are in different subnet or if there is any incorrect/incomplete AEN subscriptions.
      To get rid of this, user is required to have both client and server in same subnet.
      Any incomplete AEN subscriptions needs to be removed via CIMClient 
	  Below are the sample set of commands from VMware to list and remove incomplete subscriptions
               host-ind options
                                - host-ind s
                                - host-ind -d -k "<handler name>" 
                Indcfg options
                                - indcfg -l
                                - indcfg -c            
               Command and Options  would differ in various versions of ESXi, For additional information related to the ESXi Commands, please refer to the VMware website documentation
      Either restart of sfcb service or reboot the server is recommended after any change in VMware server.
	  Command to restart:
			- esxcli system wbem set -e 0
			- esxcli system wbem set -e 1
   f) To Manage VMware ESXi from RHEL 7.x user has to execute below commands before installation of LSA Gateway.
       1) service ebtables restart
       2) service iptables stop
6. Make sure that the folder from which LSA is being installed has Write Permission(s) before installing LSA.

=========================
Open Source Usage
=========================
Here is the list of Open Source types that has been used in LSA.
Boost v1.0 , MIT, Open Market FastCGI, zlib , BSD, The dual OpenSSL and SSLeay, Apache v2.0
 
Further details can be found using the link: <IP_ADDRESS:Web Server Port/files/credits.html>

=========================
Known Restrictions/Issues
=========================
1. After installation of the LSIStorageAuthority package, LSA process will be executed as a service named as "LSAService".
	- There is no dependency created between "NginxService" and "LSAService"

 	Please follow the below steps to Start/Stop (both) the "NginxService" and "LSAService"

 	Stop Sequence Order:
 	- First stop the "NginxService"
 	- Then stop the "LSAService"

	 Start Sequence Order:
	- First start the "NginxService"
 	- Then start the "LSAService"
2. "Modify" or "Repair" option for the existing "setup.exe" will not work. So user(s) has to un-install and install the build instead of using the "Modify" or "Repair" option.
3. When only IPv6 NIC is enabled (No IPv4), OpenSLP registration is failing for LSA with error code "-23" due to a bug in OpenSLP.
    Due to which LSA is not able to display the IPv6 address, instead of it will be showing the loop-back address (127.0.0.1).
    So please ensure we have at-least one IPv4 NIC is active so avoid the confusion related to the IP Address.
4. LSA server response of IPv4 and IPv6 addresses groups are intermixed in the presence of multi NIC cards.
5. It is possible to get a time-out from server. This time-out error is generated at the back-end if resource providing the content takes more time.
	eg: Firmware flash, enclosure(s) insertion with more Foreign (or) UBAD (or) combination of Foreign and UBAD drives, 
	 Clear Configuration/Any operation- User(s) may see a time-out error (404 or 504) with large configuration (Can be Physical Drives (or) Virtual Drives).
	 This is due to an issue in underlying layer, and CLI can be used to overcome this user(s) need to follow below 
	 a.	Change the nginx fastcgi_read_timeout variable in <LSA_HOME>\server/conf/nginx.conf to "300"seconds. This value varies based on the configuration.
	 b.	Change the "listening_port_backlog" value in <LSA_HOME>\conf\LSA.conf to 2400
	 c.	Refresh the LSA page manually after waiting adequate time.
6. Recommendation is to clear the browser history every time user upgrades/downgrades or installs the software or when user modifies the default settings in any conf file
7. LSA displays connector and enclosure position as "-" in PD related events, in the case of corresponding element is removed from the FW stack
8. New Property/Operation/Terminology/Events (mismatch) related to Personality/TFM Management: The PR:SCGCQ01816544/SCGCQ01816546 in place to handle in the future releases.
	a)LSA may not provide newly added  properties/operation(s) compared with other Apps which results the terminology/operation/events mismatch.
	b)New Events: LSA will not be handling any events and associated health changes  will not be reflected.
9. When heavy IOs are active, it is recommended NOT to perform "Download Server Report" as this may get delayed.
10. Due to lower layer behavior, all EPD related events follows the FW event description and cannot be localized.
11. LSA is limited to display the history of persistent events only for IR/IT Controller.
12. Once the drive gets removed from the stack,there is no data available corresponding to the drive in FW. In this case LSA displays the connector name as empty for drive removal event and the subsequent events.
13. Download Server Report option will be provided only for "Full Access" User(s) only.
14. If the VMware system is being managed from Windows/Linux Gateway(s), it is expected to download support logs from Gateway through which VMware LSA logged in as admin to contain the LSA logs of Gateway. 
	This applies to both Gateway Auto discovered and Manually added VMware server(s).
15. Health status shown in LSA is as per LSA's health algorithm. 
16. HttpOnly flag won't be set for server ID cookie as it set from client(GWT) which won't support this link below for reference.as we are already blocking execution of external script execution by setting Content-Security-Policy.
http://researchhubs.com/post/computing/javascript/set-a-cookie-to-httponly-via-javascript.html
17. Sorting may not work in the span tab when a missing drive present in that span.
18.There is a communication failure between LSA server to few SMTP port with TLS communication - STARTTLS, which gives test and email notification failure.
19. It is mandatory to verify all the "Mail Server" and "Email" tab's fields are correctly populated / entered, before triggering "Test Configuration" and "Save Settings".
Note: Password field would not be populated in GUI
20. Below CVE fixes has been part of the OpenSLP that is bundled along with LSA/RWC3 though some of the Scan tools will still display the below CVE's
CVE-2016-4912
CVE-2016-7567
CVE-2019-5544
21. Due to lower layer limitation, in the case of offline FW update, LSA not updating the health message or icon regarding system reboot required
22. User can not clear the configuration when VD(s)/JBOD(s) with OS/FS/Unknown Boot partition (cannot be read). In this case, user has to go to specific VD(s) and delete them.	
23. User is expected to refresh the browser on drive removal and insertion to see the updated data
24. User(s) might see the "FAULT/DEAD" alert notification if there is any event pertaining to the "FAULT/DEAD".
    GUI might not have the provision for the user(s) to Configure this option as part of Alert Delivery settings, but user(s) by default receive this notification.
25. User(s) will not be able to see the PBLP component image and it's version details, if user(s) is trying to flash/upgrade the fw using the Vision(vsn) package.
26. During VD creation users will not be allowed to enter less than 1 MB size and user can not enter values in KB from GUI, but during adding VD to the existing DG user will be allowed to enter less than 1 MB from GUI and LSA server will fail it. 
26.a.Depending on controller max stripe size, Minimum VD size may vary and could be less than 1 MB. 
27. LSA will consider the VD health instead of VD status when showing the VD health icon from 7.22 onwards
28. Physical Drive/Controller/Enclosure properties "view" option may throw "This page isnt working" error with Chrome browser.
29. During VD creation adding drives some of the non-mixing drives row's style is not updating to disable look.
30. During Foreground initialization in progress, multiple VD selections might show stale operations like "Modify Properties" for a few seconds and disappear.
31. When heavy IOs are active, LSA will be slow  and user might see stale data. Please refresh the browser or Restart LSA service to get the updated data.
32. When user enable/disable controller, Controller will not be loaded/unloaded in LSA by default. This needs LSA service restart to get the updated controller list.
33. Client's debug logs (corpus) will not be part of "server report".
34. JBOD(s) sorting is not supported under the Make JBOD Secure table.
35. When user sees the error page 50x "try again" will work when resources are available else please Check LSAService and Nginxservice status.
36. If lower layer does not populate the corresponding element's property value then LSA displays those property value as 'NA' , '-' or the property itself will not be part of the UI screen.
37. When user performs  Foreign configuration import, LSA shows Clear button enabled in the case of drive re-provision, even though there is no foreign configuration found. Clicking on clear will fail the call.
38. There may be delayed response observed in LSA with operations performed on IR/IT Controller.
39. Sorting might not work properly with the Tape Drive present in the topology. However, users can filter the tape using media.
40. For a PD with 0 size or a bad PD, LSA shows the size and sector size as "-."
41. For PerfIT, LSA might show the drive media type as HDD instead of SSD after the cable pull/push. It indicates correctly after the refresh.
==============================================
Known Restrictions/Issues Specific To VMware
==============================================
1. In any case if the VMWare server/machine goes down, user(s) needs to stop/start the LSAService of Gateway from where the VMWare server needs/was discovered.
2. Due to issues with VMware user cannot flash IR/IT firmware via LSA.
    Below case has been raised in VMware:
      Project: priv-lsi-dme_TR
      Case Number: 00035498
      Summary: On ESXi6.0 OS, Failed to read header on stream error
      https://dcpn.force.com/apex/TechnicalRequestCaseRedesignPartner?Id=500i000000VYjxaAAD
	Below the workaround suggested by VMware for IT/IR firmware flash to work:
	a) Edit /etc/sfcb/sfcb.cfg
	b) Add httpMaxContentLength: 4194304
	c) Restart service /etc/init.d/sfcbd-watchdog restart
	d) Now try to flash Firmware
3. VMware Platform only - when there is any continuous issue of slowness or sfcb not responding please try the below steps from VMware as a workaround
	To increase the memory limit for the HHRC:
	..* Edit /etc/sfcb/sfcb.cfg
	..* Into the file insert: provMemOveride: hhrc=100
	..* Reboot the system.
	..* Verify that the change has been made properly: memstats -r group-stats -u mb -s name:min:max:memsize:memsizepeak | grep -E "hhrc|memSizePeak|--"
4. VMWare Platform only - Server may take few minute(s) to populate cache during first login. User will see delay in login response.
5. ESXi (Until ESXi6.5) contains a provider class VMware_UserAuthorizationService which provides single method called CheckPermission() to get the permission particular user has. This could be read, readwrite or view
	From ESXi 6.7 onwards VMWare has deprecated this service and VMware_UserAuthorizationService class is not available
	Impact : LSA doesnt have a known method to check user permission on ESXi 6.7 and this will impact LSA Login
	Workaround : LSA shall avoid making the check for user permission and consider user has read-write permission
6. VD information didn't refresh under LSA web when create or delete VD in LSA
	DCPN: 00079967 (ESXi 6.7 U3)
	DCPN :00080762 (ESXi 7.0 U2)
	Summary : CIM Subscription is not listed
	Description: LSA application creates Subscription on ESXi setup to get indications. But we are seeing in servers where ESXi 6.7U3/ ESXi 7.0U2 is installed these indications are not delivered to client applications (LSA)
	Workaround: Restart the Services of LSA to get the updated data
7. As per lower layer behavior, only limited non-persistent events are maintained in its memory. In this case, those non-persistent event's sequence number would not be constant but it would be aligned with persisted events in sequential order.

=======================
Contents of the package
=======================
The installer provides the user with Four types of set-up option.
	1) Gateway --  This option will install all program features, which are required to manage all the LSA Servers and the VMWare servers.
	2) StandAlone -- This option will only install components required for local server management.
			 This server cannot manage any other Server(s) but can be managed by the Gateway Server(s)
	3) DirectAgent -- This option will only install components required for remote server management, which will not have any Client related components.
			  This Server(s) can only be managed through other Gateway Server(s).
	4) Light Weight Monitor (LWM) -- This option will install only components required for Monitoring purpose.
	   Refer "Installing the Light Weight Monitor System" section in the user guide for more details.

=========================
Installation Instructions
=========================
See Detailed installation instructions below:

1.Log in to the system as an administrator or as a user with administrative privileges.
  Depending on the operating system and security settings, it may be necessary to
  install LSA using administrative rights. This may require that, log in as administrator and run the installer,
  or open a command prompt as administrator and run the installer via the command line,
  or right click on the Setup.exe and select "Run As Administrator".

2. Extract the contents of the ZIP file and run "setup.exe" from the Disk1 folder.

3. When LWM is Installed, user cannot perform installation of LSA. Needs to do complete un-installation of LWM and then Install LSA.
   When LSA is Installed, user cannot perform installation of LWM. Needs to do complete un-installation of LSA and then Install LWM.
   
Note: Fresh installation is recommended to utilize the directory and file permission changes to the installation directory.
=================================
Silent Installation Instructions
=================================
To install LSA product in a non-interactive or silent mode, the user should use the following commands.

1. If VC Redist 2010 and  VC Redist 2015 is not installed in the Server, please follow the Step#2 for installing the same.
   If both are already installed please follow the step#3.
2. Install the VC Redist 2010 Package from command line "vcredist_x64.exe /Q",
   VC Redist 2010 (vcredist_x64.exe) is available in "<Package_Dir>\ISSetupPrerequisites\{7f66a156-bc3b-479d-9703-65db354235cc}\" Directory.
    Install the VC Redist 2015 Package from command line "vc_redist.x64.exe /Q"
   VC Redist 2015 (vc_redist.x64.exe) is available in "<Package_Dir>\ISSetupPrerequisites\{D093EE4D-527D-4CC7-AB3C-DCE3219FA508}\" Directory.
3. If OpenSLP is not installed, install the OpenSLP from command line "openslp_3.0.0_0_x64 /Q"
	"openslp_3.0.0_0_x64" is available in "<Package_Dir>\ISSetupPrerequisites\{23401E90-6962-476F-9D92-F9027E91A490}\" Directory.

4. Here is the steps that user needs to perform the mode of installation of his choice, with the default directory provided by LSA

	1)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=Gateway INSTALLATIONCHOICES=0 EVENTNOTIFICATIONCHOICES=3"
	2)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=StandAlone INSTALLATIONCHOICES=1 EVENTNOTIFICATIONCHOICES=3"
	3)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=DirectAgent INSTALLATIONCHOICES=2 EVENTNOTIFICATIONCHOICES=3"
	4)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=LightWeightMonitor INSTALLATIONCHOICES=129 EVENTNOTIFICATIONCHOICES=3"

	EVENTNOTIFICATIONCHOICES options:
	0=Since Last Shutdown
	1=Since Last Clear
	2=Since Last Reboot
	3=Since Newest

	If user wants to change from the default directory structure, needs to provide the below input also with each and every mode of installation

	For Ex: Setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=LightWeightMonitor INSTALLATIONCHOICES=129 INSTALLDIR=CustomDirectoryLocation"
	
	If User(s) wants to re-direct the LSA installer logs, needs to follow the below
	
	For Ex: setup.exe /s  /v"/l*v \"<PATH_TO_LOG_FILE>\<FILE_NAME>.log\""  /v"/qn ALLUSERS=1 ADDLOCAL=Gateway INSTALLATIONCHOICES=0 EVENTNOTIFICATIONCHOICES=3 INSTALLDIR=CustomDirectoryLocation"
	
5. When LWM is Installed, user cannot perform installation of LSA. Needs to do complete un-installation of LWM and then Install LSA.

Remarks:
1. If user tries to install the same version of the build again when the build is already installed, the behavior can be erratic. Recommendation would be to un-install and install the build to make any changes to the existing installer.

==============================
Upgrade/Downgrade Instructions
===============================
1. User can upgrade/downgrade to the same mode of installation to which he performed with earlier build.
2. During the upgrade/downgrade user can move from one mode of installation to another mode of installation.
3. When LWM is Installed, user cannot perform upgrade/downgrade from LWM to LSA. Needs to do complete un-installation of LWM and then Install LSA

Note: If user has placed/copied any file(s) manually in the <LSA_HOME> directory, those files needs to be manually removed before the un-installation.
	  If the file(s) has not been removed, LSA Upgrade will not be clean.

===========================
Silent Upgrade Instructions
===========================
1. User(s) needs to follow the below instructions for the Silent Upgrade of LSA, if the installation is performed with the default directory provided by LSA

	1)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=Gateway INSTALLATIONCHOICES=0 EVENTNOTIFICATIONCHOICES=3"
	2)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=StandAlone INSTALLATIONCHOICES=1 EVENTNOTIFICATIONCHOICES=3"
	3)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=DirectAgent INSTALLATIONCHOICES=2 EVENTNOTIFICATIONCHOICES=3"
	4)setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=LightWeightMonitor INSTALLATIONCHOICES=129 EVENTNOTIFICATIONCHOICES=3"

	EVENTNOTIFICATIONCHOICES options:
	0=Since Last Shutdown
	1=Since Last Clear
	2=Since Last Reboot
	3=Since Newest

	If LSA has been installed in custom directory instead of the default directory structure, needs to provide the below input also with each and every mode of installation

	For Ex: setup.exe /s /v"/qn ALLUSERS=1 ADDLOCAL=LightWeightMonitor INSTALLATIONCHOICES=129 INSTALLDIR=CustomDirectoryLocation"
	
	If User(s) wants to re-direct the LSA installer logs, needs to follow the below
	
	For Ex: setup.exe /s  /v"/l*v \"<PATH_TO_LOG_FILE>\<FILE_NAME>.log\""  /v"/qn ALLUSERS=1 ADDLOCAL=Gateway INSTALLATIONCHOICES=0 EVENTNOTIFICATIONCHOICES=3 INSTALLDIR=CustomDirectoryLocation"

2. When LWM is Installed, user cannot perform upgrade from LWM to LSA. Needs to do complete un-installation of LWM and then Install LSA

Remarks:
1. If user tries to install the same version of the build again when the build is already installed, the behavior can be erratic. Recommendation would be to un-install and install the build to make any changes to the existing installer.

================================
Sign verification Instructions
================================
command : signtool.exe verify /v /pa <LSA executable name>

Note: signtool.exe is required to validate the LSA's signature.
===========================
Un-installation Instructions
===========================
1. The product can be removed/un-install from Add/Remove Program menu.

Note: If user has placed/copied any file(s) manually in the <LSA_HOME> directory, those files needs to be manually removed before the un-installation.
	  If the file(s) has not been removed, LSA Un-installation will not be clean.

===================================
Silent Un-installation Instructions
===================================
Please perform the below steps for the Silent Un-Installation of LSA

msiexec.exe /x productcode /qn

productcode value is nothing but the value present in the <LSA_HOME_PATH/productcode.txt> file.

For ex: msiexec.exe /x {20660CCB-7C70-4D61-8D18-FB7FA3C476C9} /qn

Note: If user has placed/copied any file(s) manually in the <LSA_HOME> directory, those files needs to be manually removed before the un-installation.
	  If the file(s) has not been removed, LSA un-installation will not be clean.
