v4.1 Update 5 - SaaS¶

07 May, 2026

Amazon EKS¶

Multiple Control Plane Security Groups During Cluster Provisioning¶

You can now attach multiple control plane security groups during Amazon EKS cluster provisioning. Previously, only a single control plane security group was supported.

Example cluster spec configuration:

vpc:
  clusterEndpoints:
    privateAccess: true
    publicAccess: true
  controlPlaneSecurityGroupIDs:
    - sg-1xxxxxxx
    - sg-2xxxxxxx
    - sg-3xxxxxxx
  nat:
    gateway: Single
  subnets:
    private:
      subnet-003a8fb895010a199:
        id: subnet-1xxxxxxx
      subnet-0620572cf6768edb7:
        id: subnet-2xxxxxxx
    public:
      subnet-08c3d171dc4dfba34:
        id: subnet-3xxxxxxx
      subnet-0257882896d37ebcc:
        id: subnet-4xxxxxxx

Benefit

Improves control plane network security flexibility by allowing environment-specific segmentation and access controls at cluster creation time.

Azure AKS¶

RHEL Support for Bootstrap VM Configuration¶

This release adds support for using RHEL images in AKS bootstrap VM configuration. Previously, only Ubuntu images were supported.

Example bootstrap VM configuration:

bootstrap_vm_params {
  vm_size = "Standard_B4ms"
  image {
    id        = "/subscriptions/<subscription-id>/resourceGroups/<resource-group>/providers/Microsoft.Compute/galleries/<gallery>/images/<image-definition>/versions/<version>"
    os_state  = "Generalized"
    os_family = "rhel"
  }
}

Benefit

Enables organizations that standardize on RHEL to align AKS bootstrap infrastructure with enterprise OS, compliance, and hardening requirements.

Note

Both enhancements are currently supported via RCTL, Terraform, API, System Sync, and Save & Customize.
Form-based UI support is not available yet and will be added in a future release.

Bug Fixes¶

The following bug fixes are included in the v4.1 Update 4 release:

Bug ID	Description
RC-48851	AKS: Fixed an issue where `autoScalerProfile` was not updating in the cluster configuration.
RC-48889	EKS: Fixed an issue where undesired GitOps events were being triggered for EKS clusters.
RC-49169	GKE: Fixed validation to enforce GCP's maximum cluster name length limit of 39 characters.
RC-48920	Fixed an issue where workspace admins could not create registry secrets on shared clusters through the UI.
RC-49073	MKS: Fixed an issue where platform upgrade from `v1.1.0` to `v1.2.0` failed with ETCD stuck in pending state after a successful Kubernetes upgrade from `1.33` to `1.34`.

v1.1.63 - Terraform Provider¶

07 May, 2026

An updated version of the Terraform provider is now available.

The following enhancement is included in this release:

rafay_aks_cluster: Added support for RHEL bootstrap VM configuration via the os_family field (RHEL). For an example with this field, see aks_cluster_v3.

rafay_eks_cluster: Added support for multiple control plane security groups during EKS cluster provisioning via control_plane_security_group_ids (list of strings). For an example with this field, see eks_cluster.