Red Hat DIRECTORY SERVER 8.1 - RELEASE NOTES Release Note page 23
Hide thumbs
Also See for DIRECTORY SERVER 8.1 - RELEASE NOTES:
- Command reference manual (372 pages) ,
- Configuration and command reference (292 pages) ,
- Reference (228 pages)
Table of Contents
Advertisement
Bug Number
Description
• Performing a full manual resynchronization.
To manually synchronize Active Directory
and Directory Server, open the Directory
Server Console, and, in the Configuration
tab, click the Replication folder, select
the database, and the right-click on the
synchronization agreement.
182509
The changelog used for replication stores
passwords in clear text in order to replicate
them. In some contexts, this could be a
security risk.
190824
By default, not all attributes are
automatically replicated to consumers
in multi-master replication, including
several password-associated attributes
such as passwordRetryCount,
retryCountResetTime, and
accountUnlockTime.
190862
Global syntax checking attributes should be
enforced if the settings aren't configured in the
local password policy. However, if both global
and local password policies are configured,
the global policies aren't being enforced as the
default.
230808
In Directory Server 8.1, the 00core.ldif file
has be split so that 00core.ldif, correctly,
only contains the schema directly required
for starting the server. The other schema
Workaround
Enable fractional replication
and specifically exclude the
userPassword attribute from
being replicated, which prevents
passwords from being written to
the changelog. For example:
nsds5replicatedAttributeList:
(objectclass=*) $ EXCLUDE
userPassword
To replicate these attributes, set
the passwordIsGlobalPolicy
configuration attribute to 1 in
the cn=config entry using
ldapmodify. For example:
dn: cn=config
changetype: modify
replace:
passwordIsGlobalPolicy
passwordIsGlobalPolicy: 1
1. Enable global syntax
checking.
2. Enable fine-grained password
checking.
3. Edit the local password policy
to contain all password syntax
attributes. Set the values to
something other than the
default settings, as listed in
the Configuration, Command,
and File Reference.
4. Re-edit the local password
policy with the desired values,
even if they are the defaults.
Known Issues
23
Advertisement
Table of Contents
Related Manuals for Red Hat DIRECTORY SERVER 8.1 - RELEASE NOTES
Related Products for Red Hat DIRECTORY SERVER 8.1 - RELEASE NOTES
- Red Hat DIRECTORY SERVER 8.1 - 11-01-2010
- Red Hat DIRECTORY SERVER 8.1 - USING THE ADMIN SERVER
- Red Hat SYSTEM 8 - 25-03-2010
- Red Hat SYSTEM 8.0 - MANAGING SMART CARDS WITH THE ENTERPRISE SECURITY CLIENT
- Red Hat DIRECTORY SERVER 2.0 - GATEWAY
- Red Hat DIRECTORY SERVER 7.1
- Red Hat DIRECTORY SERVER 7.1 - ADMINISTRATOR
- Red Hat DIRECTORY SERVER 7.1 - DEPLOYMENT
- Red Hat DIRECTORY SERVER 7.1 - GATEWAY CUSTOMIZATION
- Red Hat DIRECTORY SERVER 7.1 - PLUG-IN PROGRAMMERS
- Red Hat DIRECTORY SERVER 7.1 SP7 - S
- Red Hat DIRECTORY SERVER 8.0
- Red Hat DIRECTORY SERVER 8.1 - USING RED HAT CONSOLE 4-28-2008
- Red Hat Linux Virtual Server
- Red Hat LINUX VIRTUAL SERVER - FOR ENTERPRISE LINUX 5.2 REV 05-2008
- Red Hat LINUX VIRTUAL SERVER 4.5 - ADMINISTRATION