Automation Suite release notes

Release date: April 15, 2026

Automation Suite now requires host nodes to run cgroup v2. If your environment uses cgroup v1 (the default on RHEL 8.x), you must migrate to cgroup v2 before upgrading. The RKE2 1.35 runtime used by Automation Suite deprecates cgroup v1, and the Kubelet will fail to start if cgroup v1 is detected.

Although the failCgroupV1 kubelet parameter can temporarily bypass this check, it may be deprecated in future Rancher releases. It is strongly recommended to migrate to cgroup v2 before performing the upgrade.

For details, refer to RHEL compatibility matrix and How to migrate to cgroup v2.

Automation Suite now requires a complete TLS certificate chain - a leaf certificate, all intermediate certificates, and the root CA. Previously, you could supply a partial chain (leaf certificate and root CA only). You must update your Certificate Authority Bundle to include all intermediate certificates. If you do not, TLS validation will fail.

For details, refer to Certificate requirements.

We have introduced a new mandatory type field in the multisite section of cluster_config.json. This field is required when configuring disaster recovery deployments and specifies the deployment type. You must set it to either active-active or active-passive. This field is required for both the primary and secondary cluster configurations.

For details, refer to Disaster recovery: Active/Passive and Active/Active configurations.

We have improved the registry hydration process to retrieve credentials more reliably. Registry credentials are now first retrieved from the cluster_config.json file, with a fallback to Kubernetes secrets if credentials are not found there. Previously, the process relied solely on the Docker registry secret within the Kubernetes cluster, which could fail if the uipath namespace was not present or the expected secret was unavailable.

The support bundle tool can now collect the RKE2 bundle even when RKE2 is down. Previously, support bundle generation would fail if RKE2 was unavailable. For more details, refer to Using the Automation Suite support bundle.

Object Store API prerequisite checks now provide clearer error messages, making it easier to diagnose and resolve configuration issues before installation.

We have expanded our OS support to include RHEL versions 9.7 and 10.0. For details on the supported RHEL versions, refer to RHEL compatibility matrix.

Integration Service is now supported on Automation Suite deployments that run on FIPS 140-2-enabled machines. For details, refer to Security and compliance.

A new optional queue_config.fqdn_suffix field is now available under integrationservices in cluster_config.json. This field is intended for sovereign or national cloud deployments where queue endpoints use a non-standard FQDN suffix, such as China AWS (amazonaws.com.cn), China Azure (core.chinacloudapi.cn), or Azure US Government (core.usgovcloudapi.net). If the field is left empty or omitted, default suffixes apply.

For details, refer to Configuring the queue FQDN suffix for sovereign cloud deployments.

Automation Suite now includes two new custom Prometheus alerts in the monitoring-oom-alerts rule group to help you detect and respond to container memory issues:

For details, refer to Kubernetes resources alerts.

Solutions now supports Active/Passive and Active/Active deployments. For details, refer to Disaster recovery - Active/Passive and Active/Active.

Organization administrators can now delegate identity management tasks to non-admin users through a new custom organization-level role. When assigned, this role lets users manage user accounts, robot accounts, and local groups at the organization level without granting full organization administrator rights. The role supports granular CRUD permissions per resource type and includes built-in elevation-of-rights protections: users with this role cannot modify the Administrators group or interact with existing organization administrator accounts.

For details, see User management role.

In IPv6 environments, Fluentbit fails to forward logs to Fluentd because the Fluentd forward input plugin binds to an IPv4 address by default.

To address this issue, you must patch the logging ArgoCD Application and set logging-operator.logging.fluentd.forwardInputConfig.bind to ::. For details, refer to the Troubleshooting section.

Kerberos-based authentication is currently not supported for Integration Service.

We are working on bringing Kerberos support to upcoming Automation Suite releases.

Meanwhile, you can use alternative authentication mechanisms such as basic authentication or workload identity-based authentication.

Insights does not currently support FIPS. To remain compliant with FIPS 140-2 requirements, you must disable Insights. If you need to use Insights, you can deploy it on a dedicated non-FIPS node.

For details, refer to Security and compliance and How to deploy Insights in a FIPS-enabled cluster.

We recommend that you regularly check the deprecation timeline for any updates regarding features that will be deprecated and removed.

The following table outlines the release status, version, and release notes for all UiPath products deployed under Automation Suite 2.2510.2.

Legend:

✅ - This Automation Suite version bundles a new version of the product. New release notes are available.

❌ - This Automation Suite version bundles a previously released version of the product. No new release notes are available.

This Automation Suite release bundles the following internal components: