Identity Federation with Microsoft Entra ID:
VCF users can now configure Microsoft Entra ID (formerly Azure AD) as an identity provider, streamlining access management.
APIs for PCI Compliance Audits:
A new suite of APIs enables auditing VCF configurations for adherence to nine critical PCI-DSS controls.
vSAN Max Support:
The new vSAN Max disaggregated storage offering supports petabyte-scale, storage-only clusters. Powered by the ESA high-performance file system, it delivers scalable storage densities without performance trade-offs and includes features like efficient snapshots and low-overhead services such as encryption and compression.
vSAN ESA Stretched Cluster:
VCF now supports configuring ESA Stretched Clusters in vSAN Ready Nodes. This feature protects workloads across two physical sites by mitigating downtime risks during site failures.
VCF Import Tool for vSphere and vSAN:
Integrate existing vSphere environments into VMware Cloud Foundation using the VCF Import Tool, centralizing management and optimizing resources without requiring a complete rebuild.
Expanded Principal Storage Support for Converted Management Domains:
Converted vSphere environments now support VMFS-FC and NFS v3 as principal storage types, in addition to vSAN.
Dual DPU Support:
VCF users can now benefit from Dual DPU support, enhancing availability and performance with active/standby configurations and doubling offload capacity through independent DPUs.
Avi Load Balancer Integration:
Deploy the Avi Load Balancer (formerly NSX Advanced Load Balancer) in new workload domains and manage password rotation and certificate updates directly via SDDC Manager.
Manual Sync for Out-of-Band vCenter Changes:
Synchronize out-of-band changes, such as cluster additions or name modifications, with SDDC Manager for better alignment and inventory accuracy.
ESXi Live Patching:
Apply security patches to ESXi hosts without the need for VM evacuation, minimizing disruption during updates.
Flexible Target BOM for Upgrades:
Create customized BOMs using patches for streamlined workload domain upgrades in a single orchestrated workflow, eliminating the need for separate maintenance windows.
Async Patching in SDDC Manager:
Apply BOM component patches directly from the SDDC Manager UI, eliminating reliance on the standalone Async Patch Tool.
Day N Workflows with Embedded Async Patching:
Add new workload domains and clusters with patched versions of individual BOM components directly from SDDC Manager.
Asynchronous SDDC Manager Upgrades:
Upgrade SDDC Manager independently of other BOM components, enabling critical fixes, security patches, and feature enhancements.
Authenticated Proxy Support:
Enable secure internet connectivity from SDDC Manager by using proxy authentication.
Offline Depot for Lifecycle Bundles:
Simplify lifecycle bundle downloads in air-gapped environments. The offline depot allows staging and direct downloads of SDDC Manager and BOM bundles.
Shared NSX Support for Isolated Workload Domains:
Create isolated workload domains that share a single NSX Manager instance, improving resource utilization and management flexibility.