Red Hat Directory Server 8.0 Release Notes [2008].pdf

(48 KB) Pobierz

Red Hat Directory Server 8.0

Release Notes

Red Hat Documentation Team

2008 Red Hat, Inc.

You need to override this in your local ent file Red Hat. This

material may only be distributed subject to the terms and conditions set forth in

the Open Publication License, V1.0 or later with the restrictions noted below

(the latest version of the OPL is presently available at

http://www.opencontent.org/openpub/).

Distribution of substantively modified versions of this document is prohibited

without the explicit permission of the copyright holder.

Distribution of the work or derivative of the work in any standard (paper) book

form for commercial purposes is prohibited unless prior permission is obtained

from the copyright holder.

Red Hat and the Red Hat "Shadow Man" logo are registered trademarks of Red

Hat, Inc. in the United States and other countries.

All other trademarks referenced herein are the property of their respective

owners.

The GPG fingerprint of the security@redhat.com key is:

CA 20 86 86 2B D6 9D FC 65 F6 EC C4 21 91 80 CD DB 42 A6 0E

1801 Varsity Drive

Raleigh, NC 27606-2072

USA

Phone: +1 919 754 3700

Phone: 888 733 4281

Fax: +1 919 754 3701

PO Box 13588

Research Triangle Park, NC 27709

USA

Abstract

These Release Notes contain important information available at the time of the

release of Red Hat Directory Server 8.0. New features, system requirements,

Red Hat Directory Server 8.0 Release Notes

installation notes, known problems, resources, and other current issues are

addressed here. Read this document before beginning to use Directory Server

8.0.

1. New in Red Hat Directory Server 8.0 ....................................................................... 2

2. System Requirements ............................................................................................ 4

3. Installing Directory Server 8.0 ................................................................................. 6

4. Bugs Fixed in Directory Server 8.0 .......................................................................... 7

5. Known Issues .......................................................................................................11

1. New in Red Hat Directory Server 8.0

Directory Server 8.0 includes several new features for enhanced authentication and password

security, changed platform support, and support for IPv6 clients. Directory Server 8.0 also

introduces a new, standards-based filesystem architecture.

•

Section 1.1, “Adaptation to Filesystem Hierarchy Standards”

•

Section 1.2, “New Password Hashing Algorithms Support”

•

Section 1.3, “Improved SASL Support for Kerberos Authentication”

•

Section 1.4, “Enhanced Password Syntax Checking”

•

Section 1.6, “Changed Platform Support”

•

Section 1.5, “Support for IPv6”

1.1. Adaptation to Filesystem Hierarchy Standards

Directory Server 8.0 components have been split into multiple, separate components. Rather

than being installed into a single installation directory, Directory Server follows the Filesystem

Hierarchy Standard (FHS), which distributes the libraries and files. This new FHS layout more

closely integrates Directory Server with its base operating system and leverages existing

platform components, such as the Apache web server. The FHS layout will also minimize the

overhead of creating and deploying patches and updates.

1.2. New Password Hashing Algorithms Support

The existing SHA support in Directory Server has been extended to support for

SHA-256

SHA-384

SHA-512

, and

MD5

algorithms. These algorithms are used for hashed password

storage to offset any potential insecurities in the existing SHA-1 hashing algorithm.

1.3. Improved SASL Support for Kerberos Authentication

Directory Server 8.0 extends and strengthens its support for SASL authentication using the

Enhanced Password Syntax Checking

GSS-API

to a Kerberos domain. Additional SASL tools have been added to the Mozilla LDAP C

SDK.

1.4. Enhanced Password Syntax Checking

Password syntax checking

enforces rules for password strings, so that any password has to

meet or exceed certain criteria. Directory Server 8.0 adds password syntax checking to better

enforce its password policies. All password syntax checking can be applied globally, per

subtree, or per user.

In changes to the default password policies, the default minimum password length in Directory

Server 8.0 has been set to eight characters, and checks for trivial words has been improved. A

trivial word is any value stored in the

uid

givenName

, or

mail

attributes of the user's

entry. Additionally, Directory Server 8.0 includes more password enforcement options, providing

different optional categories for the password syntax:

• Minimum number of digit characters (0-9)

• Minimum number of ASCII alphabetic characters, both upper- and lower-case

• Minimum number of uppercase ASCII alphabetic characters

• Minimum number of lowercase ASCII alphabetic characters

• Minimum number of special ASCII characters, such as

!@#$

• Minimum number of 8-bit characters

• Maximum number of times that the same character can be immediately repeated, such as

aaabbb

• Minimum number of character categories required per password; a category can be upper- or

lower-case letters, special characters, digits, or 8-bit characters

1.5. Support for IPv6

Directory Server 8.0 accepts incoming connections from IPv6 clients. Additionally, IPv6 support

has been added to the LDAP SDK, so many command-line tools and scripts included with

Directory Server 8.0 can understand and use IPv6 addresses.

NOTE

Directory Server will not interpret IPv6 addresses in access control instructions or

use IPv6 connections for operations such as replication and chaining.

1.6. Changed Platform Support

Red Hat Directory Server 8.0 Release Notes

Directory Server 8.0 is supported on the following platforms:

• HP-UX 11i Itanium/IPF

• Red Hat Enterprise Linux 4 i386 (32-bit)

• Red Hat Enterprise Linux 4 x86_64 (64-bit)

• Red Hat Virtualization Server 5 i386 (32-bit)

• Red Hat Virtualization Server 5 x86_64 (64-bit)

NOTE

Red Hat Directory Server 8.0 is supported running on a virtual guest on Red Hat

Virtualization Server 5.

• Sun Solaris 9 (SPARC v9, 64-bit)

2. System Requirements

This section contains information related to installing and upgrading Red Hat Directory Server

8.0, including prerequisites and hardware or platform requirements.

2.1. Perl Prerequisites

Directory Server 8.0 does not package

nsperl

with the product.

perldap

should work with the

version of

perl

pre-installed on the system.

There are some prerequisites for

perl

to run

perldap

with the pre-installed version.

• For Red Hat Enterprise Linux systems, use the Perl version that is installed with the operating

system in

/usr/bin/perl

for both 32-bit and 64-bit versions of Red Hat Directory Server.

• On Solaris systems, Red Hat Directory Server is installed with a Perl package,

RHATperlx

that must be used. This package contains a 64-bit version of Perl 5.8. It is not possible to use

the Perl version installed in

/usr/bin/perl

on Solaris because it is 32 bit and will not work

with Directory Server's 64-bit components.

• On HP-UX, Red Hat Directory Server uses the Perl version installed with the operating

system in

/opt/perl_64/bin/perl

. Contact Hewlett-Packard support if this Perl version is

not installed.

2.2. Directory Server Supported Platforms

Directory Server Console Supported

Directory Server 8.0 is supported on the following platforms:

• HP-UX 11i Itanium/IPF

• Red Hat Enterprise Linux 4 i386 (32-bit)

• Red Hat Enterprise Linux 4 x86_64 (64-bit)

• Red Hat Virtualization Server 5 i386 (32-bit)

• Red Hat Virtualization Server 5 x86_64 (64-bit)

NOTE

Red Hat Directory Server 8.0 is supported running on a virtual guest on Red Hat

Virtualization Server 5.

• Sun Solaris 9 (SPARC v9, 64-bit)

2.3. Directory Server Console Supported Platforms

The Directory Server Console is supported on the following platforms:

• HP-UX 11i Itanium/IPF

• Red Hat Enterprise Linux 4 i386 (32-bit)

• Red Hat Enterprise Linux 4 x86_64 (64-bit)

• Red Hat Virtualization Server 5 i386 (32-bit)

• Red Hat Virtualization Server 5 x86_64 (64-bit)

• Sun Solaris 9 (SPARC v9, 64-bit)

• Windows XP

• Windows 2000 Server

• Windows 2003 Server

NOTE

The Directory Server Console can be installed on additional Windows platforms

Plik z chomika:

luk3Z

Inne pliki z tego folderu:

CentOS docs.txt (0 KB)
Red Hat Directory Server 8.0 Installation Guide [2008].pdf (508 KB)
Red Hat Directory Server 8.0 Configuration, Command and File Reference [2008].pdf (1063 KB)
Red Hat Directory Server 8.0 Release Notes [2008].pdf (48 KB)
Red Hat Directory Server 8.0 Administrator's Guide [2008].pdf (4953 KB)

Red Hat Directory Server 8.0 Release Notes [2008].pdf

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: