open-vault/website/content/docs/upgrading/upgrade-to-0.6.3.mdx

---
layout: docs
page_title: Upgrading to Vault 0.6.3 - Guides
description: |-
  This page contains the list of deprecations and important or breaking changes
  for Vault 0.6.3. Please read it carefully.
---

# Overview

This page contains the list of deprecations and important or breaking changes
for Vault 0.6.3. Please read it carefully.

## LDAP Null Binds Disabled By Default

When using the LDAP auth method, `deny_null_bind` has a default value of
`true`, preventing a successful user authentication when an empty password
is provided. If you utilize passwordless LDAP binds, `deny_null_bind` must
be set to `false`. Upgrades will keep previous behavior until the LDAP
configuration information is rewritten, at which point the new behavior
will be utilized.

## Request Size Limitation

A maximum request size of 32MB is imposed to prevent a denial of service attack
with arbitrarily large requests.

## Any Audit Device Successfully Activated Allows Active Duty

Previously, when a new Vault node was taking over service in an HA cluster, all
audit devices were required to be active successfully to take over active
duty. This behavior now matches the behavior of the audit logging system
itself: at least one audit device must successfully be activated. The server
log contains an error when this occurs. This helps keep a Vault HA cluster
working when there is a misconfiguration on a standby node.
Disallow passwords LDAP binds by default (#2103) 2016-12-01 18:11:40 +00:00			`---`
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00			`layout: docs`
			`page_title: Upgrading to Vault 0.6.3 - Guides`
Disallow passwords LDAP binds by default (#2103) 2016-12-01 18:11:40 +00:00			`description: \|-`
Move upgrade into guides (#2460) * Move upgrades to guides * Make root token copy-pastable 2017-03-08 22:33:58 +00:00			`This page contains the list of deprecations and important or breaking changes`
			`for Vault 0.6.3. Please read it carefully.`
Disallow passwords LDAP binds by default (#2103) 2016-12-01 18:11:40 +00:00			`---`

			`# Overview`

			`This page contains the list of deprecations and important or breaking changes`
			`for Vault 0.6.3. Please read it carefully.`

			`## LDAP Null Binds Disabled By Default`

Standardize on "auth method" This removes all references I could find to: - credential provider - authentication backend - authentication provider - auth provider - auth backend in favor of the unified: - auth method 2017-09-13 01:48:52 +00:00			When using the LDAP auth method, `deny_null_bind` has a default value of
Disallow passwords LDAP binds by default (#2103) 2016-12-01 18:11:40 +00:00			`true`, preventing a successful user authentication when an empty password
			is provided. If you utilize passwordless LDAP binds, `deny_null_bind` must
			be set to `false`. Upgrades will keep previous behavior until the LDAP
			`configuration information is rewritten, at which point the new behavior`
			`will be utilized.`
Prep for 0.6.3 2016-12-06 16:26:29 +00:00
			`## Request Size Limitation`

			`A maximum request size of 32MB is imposed to prevent a denial of service attack`
			`with arbitrarily large requests.`

More naming cleanup 2017-09-21 21:14:40 +00:00			`## Any Audit Device Successfully Activated Allows Active Duty`
Prep for 0.6.3 2016-12-06 16:26:29 +00:00
			`Previously, when a new Vault node was taking over service in an HA cluster, all`
More naming cleanup 2017-09-21 21:14:40 +00:00			`audit devices were required to be active successfully to take over active`
Prep for 0.6.3 2016-12-06 16:26:29 +00:00			`duty. This behavior now matches the behavior of the audit logging system`
More naming cleanup 2017-09-21 21:14:40 +00:00			`itself: at least one audit device must successfully be activated. The server`
Prep for 0.6.3 2016-12-06 16:26:29 +00:00			`log contains an error when this occurs. This helps keep a Vault HA cluster`
			`working when there is a misconfiguration on a standby node.`