Deployment Guide

9 Dell Hybrid Cloud System for Microsoft Cloud Platform System Standard

12.

In the left-hand

panel

, navigate to Overview > Storage > Physical Disks. Make sure the SSDs are update with D417

firmware.

13.

Once everything is completed, you can bring the stamp and cluster up. Steps on how to start up the stamp can be found in the

DHCS Administrator Guide.

Contact Dell EMC Support if you have any issues or failures.

If the drive has already failed due to this issue or additional help is required, please contact Dell EMC Support.

Once the D417 firmware is applied to an online and healthy drive, the drive is no longer at risk of failure at approximately

40,000 Power On Hours. If a drive is already in a failed state, it will need to be replaced. If you have experienced DU/DL

(Data Unavailable/Data Loss), contact Dell EMC Support. This recovery process will not restore the data on the drive

that is already lost.

Additional update information

• The 2003 update package was built using the new CPS P&U Self-service script.

• The 2003 P&U package release is dependent on the install of P&U 1905.

• The P&U install and validation steps with the 2003 update package are unchanged from previous releases.

• Update 1804 (and higher) includes configuration changes to support KB# 4093492, which impacts CredSSP

authentication protocol and RDP functions. All servers in a CPS environment are now forcing the registry key

“HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters\AllowEncryptionO

racle” to a value of “1”. See KB# 4093492 for any impacts to your environment

• Update 1808 (and higher) includes configuration changes to support KB# 4072698, the

FeatureSettingsOverride registry setting is set to “8”. This setting enables mitigations around Speculative

Store Bypass (CVE-2018-3639) together with mitigations around Spectre Variant 2 (CVE-2017-5715 "Branch

Target Injection") and Meltdown (CVE-2017-5754) through the following registry settings (because they are

not enabled by default).

• Update 1909 (and higher) includes configuration changes to support KB# 4072698, the

FeatureSettingsOverride registry setting is set to “72”. This setting enables mitigations for microarchitectural

Data Sampling (CVE-2018-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130) along with Spectre

[ CVE-2017-5753 & CVE-2017-5715 ] and Meltdown [ CVE-2017-5754 ] variants, including Speculative Store

Bypass Disable (SSBD) [ CVE-2018-3639 ] as well as L1 Terminal Fault (L1TF) [ CVE-2018-3615, CVE-

2018-3620, and CVE-2018-3646 ]

All instructions on installing this update are included in this guide.