1--- 2layout: "docs" 3page_title: "Upgrading to Vault 0.6.3 - Guides" 4sidebar_title: "Upgrade to 0.6.3" 5sidebar_current: "docs-upgrading-to-0.6.3" 6description: |- 7 This page contains the list of deprecations and important or breaking changes 8 for Vault 0.6.3. Please read it carefully. 9--- 10 11# Overview 12 13This page contains the list of deprecations and important or breaking changes 14for Vault 0.6.3. Please read it carefully. 15 16## LDAP Null Binds Disabled By Default 17 18When using the LDAP auth method, `deny_null_bind` has a default value of 19`true`, preventing a successful user authentication when an empty password 20is provided. If you utilize passwordless LDAP binds, `deny_null_bind` must 21be set to `false`. Upgrades will keep previous behavior until the LDAP 22configuration information is rewritten, at which point the new behavior 23will be utilized. 24 25## Request Size Limitation 26 27A maximum request size of 32MB is imposed to prevent a denial of service attack 28with arbitrarily large requests. 29 30## Any Audit Device Successfully Activated Allows Active Duty 31 32Previously, when a new Vault node was taking over service in an HA cluster, all 33audit devices were required to be active successfully to take over active 34duty. This behavior now matches the behavior of the audit logging system 35itself: at least one audit device must successfully be activated. The server 36log contains an error when this occurs. This helps keep a Vault HA cluster 37working when there is a misconfiguration on a standby node. 38