Red Hat DIRECTORY SERVER 8.1 - RELEASE NOTES Release Note page 15

Bug Number Description
184141 The password policy response was not returned as part of a password change
216522 extended operation. This meant that the password policies weren't being applied to
248924 password changes done through the password modify extended operation.
191779 Restarting the Administration Server immediately after starting the Configuration
Directory Server would stop the Configuration Directory Server process
unexpectedly.
191834 There were various memory leaks fixed in the server, including startup errors,
430172 SASL mapping, VLV indexing, CoS, and the Administration Server.
436830
459302
460381
472999
The visual ACI editor would resort the targets in the Targets tab by name, but, in
198090
reality, the original order was being used, so selecting the visual target attribute
actually selected the attribute in that position in the original sort order.
199923 A subtree search would not return any entries under an ou with special characters
in the name.
201332 If a password was reset and the password policy required the password to be
reset by the user, the password could not be changed using the password change
extended operation.
204626 If password syntax checking was enabled, the password policy would check the
syntax on the hashed value of the password. This could actually allow users to use
trivial passwords by adding a hashed password as the userPassword value.
204966 If the required Windows attributes were added to an existing Directory Server after
478656 synchronization has been set up, the user was not automatically synced over to
the Windows sync peer. When the user entry was synchronized over after a total
update, the account was disabled.
208076 Trying to set inheritance when using an LDAP URL in an ACI target based did not
work. For example, this ACI would fail:
userattr="parent[1].description#LDAPURL
220532 Access to the RUV used by replication was restricted to the Directory Manager, for
security. However, this meant that very high-level access had to be granted to any
process used for replication monitoring.
This fix allows non-privileged users to be granted access to the RUV entry, while
still preventing non-privileged access to the normal tombstone entries. Access is
granted to all other users using a default ACI, which can be edited to restrict the
access to a specific user or group.
230808 The basic schema used by the Directory Server itself was divided into two files. All
of the schema required to start the server are contained in 00core.ldif. All of
the other configuration schema elements used by the Directory Server instances
are in 01common.ldif.
238762 By default, the nsslapd-import-cache-autosize attribute for the LDBM
Database Plug-in was set to -1, which means that the cache is automatically set to
half (50%) of the available memory. However, the Directory Server Console shows
Bugs Fixed in 8.1
15