Sun Java™ System Directory Server Release Notes for Patchzip

Version 5.2 2005Q4

Part Number 819-4290-10

These Release Notes contain important information about the compressed archive (patchzip) of Sun Java System Directory Server 5.2 2005Q4. New features and enhancements, known issues and limitations, and other information are addressed here. Read this document before you begin using Directory Server 5.2.

The most up-to-date version of these release notes can be found at the Sun Java System documentation web site: http://docs.sun.com/prod/sunone. Check the web site prior to installing and setting up your software. Then check the web site periodically thereafter to view the most up-to-date release notes and product documentation.

These release notes contain the following sections:

Release Notes Revision History
About Directory Server 5.2 2005Q4
Bugs Fixed in This Update
Installation Information
Known Issues and Limitations
How to Report Problems and Provide Feedback
Additional Sun Resources

Third-party URLs are referenced in this document and provide additional, related information.

Note	Sun is not responsible for the availability of third-party Web sites mentioned in this document. Sun does not endorse and is not responsible or liable for any content, advertising, products, or other materials that are available on or through such sites or resources. Sun will not be responsible or liable for any actual or alleged damage or loss caused by or in connection with the use of or reliance on any such content, goods, or services that are available on or through such sites or resources.

---

Release Notes Revision History

Table 1 Revision History 

Date	Description of Changes
September 2005	RR

---

About Directory Server 5.2 2005Q4

This is a maintenance update for compressed archive installations of Directory Server 5.2. This update can be performed on Directory Server 5.2 only. This update cannot be performed on versions of Directory Server prior to Directory Server 5.2.

These release notes describe issues related to the compressed archive of Directory Server 5.2 2005Q4. New features and enhancements, known issues and limitations, and other information related to Directory Server 5.2 2005Q4 are described in the main Directory Server Release Notes.

Supported Platforms

Directory Server 5.2 2005Q4 is available on the following platforms:

Sun Solaris 8 for UltraSPARC (32 and 64 bit)
Sun Solaris 9 for UltraSPARC (32 and 64 bit)
Sun Solaris 10 for SPARC (64-bit)
Sun Solaris 9 for x86 (IA-32)
Sun Solaris 10 for x86 (IA-32)
Microsoft Windows 2000 Server and Advanced Server SP 4 (IA-32)
Microsoft Windows Server 2003 Enterprise Edition (IA-32) (including SP1)
Microsoft Windows Server 2003 Standard Edition (IA-32) (including SP1)
Red Hat Linux AS 2.1 U6
Red Hat Linux AS 3.0 U4
Hewlett-Packard HP-UX 11i PA-RISC 1.1 or 2.0 (32 bit and 64 bit)
IBM AIX 5.2 (Power PC) (32 bit)

The original release of Directory Server 5.2 has not been validated on IBM AIX 5.2. However, this update is validated on IBM AIX 5.2. The original release of Directory Server 5.2 has been validated on IBM AIX 5.1, but IBM AIX 5.1 is no longer supported by IBM.

Specific operating system patches may need to be installed before Directory Server 5.2 2005Q4 can be installed. For further information, refer to the Directory Server Installation and Tuning Guide issued with the initial release of Directory Server 5.2. You can obtain Solaris patches from http://sunsolve.sun.com

---

Bugs Fixed in This Update

This section describes bug fixes specific to the compressed archive of Directory Server 5.2 2005Q4. For a list of bugs fixed in the Directory Server 5.2 2005Q4 product, refer to the main Directory Server Release Notes.

Table 2 Bugs Fixed in the Compressed Archive of Directory Server 5.2 2005Q4 

Bug Number	Description
5080043	PatchZIP / Install of 5.2 p2 changes file permissions to root

---

Installation Information

For information about patch requirements and installation, see the following sections:

Full Distribution
Patch Requirements
General Installation Information

Full Distribution

This release is available as a full distribution at this location: http://www.sun.com/download/products.xml?id=4373c4c2. To install the full distribution, follow the instructions in the Sun ONE Directory Server 5.2 Installation and Tuning Guide at http://docs.sun.com/source/816-6697-10/install.html. The list of supported platforms given in this document supersedes that in the Sun ONE Directory Server 5.2 Installation and Tuning Guide.

This full installation cannot be used to upgrade a previous version or installation of Directory Server 5.2. This full installation can only be used for new installations of the software. If you already have Directory Server 5.2 installed on your system and need to upgrade to Directory Server 5.2 Patch 4, please see "Patch Requirements" on page 4.

Patch Requirements

This section lists the patches that correspond to this release. The patches are available at http://sunsolve.sun.com.

Table 3 Alignment Patches for the Compressed Archive of Directory Server 5.2 2005Q4

Platform	Required Patch	Description
AIX	117670-03	Directory Server 5.2 patch 4: Core patch - AIX5.2
HP-UX	117669-03	Directory Server 5.2 patch 4: Core patch - HPUX11i
Linux	117668-03	Directory Server 5.2 patch 4: Core patch - patchzip: RHAS 2.1/RHAS 3.0
Solaris	117665-03	Directory Server 5.2 patch 4: Core patch - patchzip for Solaris
Solaris_i86pc	117666-03	Directory Server 5.2_x86 patch 4: Core patch - patchzip for Solaris
Windows	117667-03	Directory Server 5.2 patch 4: Core patch - Microsoft Windows

Localized patches are independent of the operating system that you use. The localized patch IDs are as follows:

Table 4 Localization Patches for the Compressed Archive of Directory Server 5.2 2005Q4

Language	Required Patch	Description
de	117798-03	Directory Server 5.2 patch 4: German (DE) Localized resources - (patchzip)
es	117799-03	Directory Server 5.2 patch 4: Spanish (ES) localized resources - (patchzip)
fr	117800-03	Directory Server 5.2 patch 4: French (FR) Localized resources - (patchzip)
ja	117801-03	Directory Server 5.2 patch 4: Japanese (JA) Localized resources - (patchzip)
ko	117802-03	Directory Server 5.2 patch 4: Korean (KO) Localized resources - (patchzip)
zh	117803-03	Directory Server 5.2 patch 4: Simplified Chinese (ZH) Localized Resources - (patchzip)
zh_TW	117804-03	Directory Server 5.2 patch 4: Traditional Chinese (ZH_TW) Localized resources - (patchzip)

General Installation Information

For information about installation, see the following sections:

Installation Notes
Installation Instructions

Installation Notes

Read the following notes before installing this patch:

If several instances of Directory Server share the same configuration directory server, all instances must be upgraded to the same version.
If the installation script restarts some instances of Directory Server that you stopped intentionally, stop these instances manually after upgrade.
IPv6 support has not been extensively tested on Windows systems.
During the patchzip installation, the following messages may be observed.

Server has detected a disorderly shutdown or a change in cache size
Recovery phase is starting, this may take a while...

Ignore this message.

Installation Instructions

The following instructions apply to a full installation of Directory Server and Administration Server on the target host. Instructions for other types of installation are in the README file of the compressed archive.

In this section <SERVER ROOT> is the directory where the Directory Server product has been installed.

To Upgrade to the Compressed Archive of Directory Server 5.2 2005Q4 on Unix Platforms

Close all console windows. If a console is open when the installation script is run, the script cannot upgrade the console binaries.
Unpack the tar gzipped archive:

# mkdir <MyDirectory>

# cd <MyDirectory>

# cp <package>.tar.gz .

# gunzip <package>.tar.gz

# tar xvf <package>.tar

As the owner of <SERVER ROOT>, run the installation script by using one of the following commands:
Command 1: ./install.sh <SERVER ROOT> <ADMIN ID> <ADMIN PASSWORD>

The ID and password are provided with the command.

Command 2: ./install.sh <SERVER ROOT>

The ID and password are requested interactively.

Command 3: ./install.sh <SERVER ROOT> -f <CREDENTIAL FILE>

The ID and password are provided in the following lines of the file <CREDENTIAL FILE>:

Admin Id: <ADMIN ID>
Admin Password: <ADMIN PASSWORD>

Command 4: ./install.sh <SERVER ROOT> <ADMIN ID> <ADMIN PASSWORD>
  <SERVER UID> <SERVER GROUP>

The Directory Server is restarted by the installation script.

To Upgrade to the Compressed Archive of Directory Server 5.2 2005Q4 on Windows Platforms

Become the administrator or a member of the administrator group.
Close all console windows. If a console is open when the installation script is run, the script cannot upgrade the console binaries.
Close the event viewer.
Unpack the zip archive:

# mkdir <MyDirectory>

# cd <MyDirectory>

# cp <ZIP file> .

# unzip <ZIP file>

Stop any instances of Directory Server located in <SERVER ROOT>.
Run the installation script in one of the following ways:

- If <SERVER ROOT>, <ADMIN ID> or <ADMIN PASSWORD> do not contain special characters, use this command:

# install.bat <SERVER ROOT> <ADMIN ID> <ADMIN PASSWORD>

- If <SERVER ROOT>, <ADMIN ID> or <ADMIN PASSWORD> contain special characters, use this command:

# lib\nsPerl5.005_03\bin\MSWin32-x86\perl.exe upgrade.pl /
"<SERVER ROOT>" "<ADMIN ID>" "<ADMIN PASSWORD>"

Values with special characters must be protected with double quotes ("). Values with spaces are not supported.

Directory Server is restarted by the installation script.

Reboot the system.

To Upgrade to the Compressed Archive of Directory Server 5.2 2005Q4 in a Localized Environment

Upgrade the English version of the compressed archive for your operating system, as described in the previous procedures.
Extract the patch file for your locale to the /tmp directory or another directory of your choice.
As the owner of <SERVER ROOT> on Unix platforms, or as the Administrator on Windows platforms, unzip the patch file by using the -o option to overwrite existing files, For example:

# unzip -o 5.2_Patch_4-ja.zip -d <SERVER ROOT>

---

Known Issues and Limitations

This section describes the known issues and limitations with the compressed archive of Directory Server 5.2 2005Q4. For a list of the known issues and limitations in the Directory Server 5.2 2005Q4 product, refer to the main Directory Server Release Notes. The issues are grouped into the following categories:

Installation, Uninstallation, and Migration
Replication
Directory Server Console
Core Server
Miscellaneous

Installation, Uninstallation, and Migration

Installing Directory Proxy Server in the default startup order on Windows 2000 Advanced Server causes services to hang (#4903795)

Workaround
To prevent services from hanging, avoid using the default startup order (Directory Proxy Server, Administration Server, and then Directory Server). Instead, install Directory Server, then Directory Proxy Server followed by Administration Server.

Installing Directory Server 5.2 on AIX 5.1 is successful but generates misleading errors (#4911828)

Installing Directory Server 5.2 on a Windows machine running Directory Server 5.1 Service Pack 2 fails (#4974775)

Workaround
Shut down the Directory Server 5.1 Service Pack 2 instance then rename or remove the nsldap32v50.dll file shown in the error log and attempt the 5.2 installation again.

The migrateinstance5 script fails on Windows if the default server root is in use (c:\Program Files\Sun\MPS) preventing users from migrating from a previous version to Directory Server 5.2 (#4985979)

If either Administration Server or Directory Server is installed as root, uninstallation must also be run as root (#5014882).

If you do not run the uninstallation as root, the product registry is not updated correctly.

On Linux Platforms the Unzip Utility Must be Installed Before Upgrading the Compressed Archive (#5057611)

The unzip utility is not delivered with the compressed archive for Linux platforms. Before upgrading the compressed archive on Linux platforms, install the unzip utility. For other platforms the unzip utility is delivered with the compressed archive.

Installing this update on Windows platforms fails if Windows Event Viewer is open (#5061260).

Close the Event Viewer before launching the update.

Multiple Options When You Create an Instance From the Console on Windows Platforms (#6230829)

When you create a new instance by using the console, you are given multiple options.

This issue occurs when you upgrade from Directory Server 5.2 by using the compressed archives (patchzip) of Directory Server 5.2 2005Q1, Directory Server 5.2 2005Q1 and Directory Server 5.2 2004Q2.

Workaround
Choose any of the options. There is no difference between the options.

Cannot Open Console on Configuration Directory Server for Directory Server Only Installations on HP-UX Platforms (#6234242)

On HP-UX platforms, when you install Directory Server only, you cannot open the console on the associated Configuration Directory Server unless the locale is specified as English.

Workaround
On the Configuration Directory Server, perform one of the following workarounds:

Set the locale to English before you open the console
Load the console from the command line by running this command: startconsole -l en

Upgrade of Compressed Archive Fails With Message "Can't create logfile" (#6238257)

When you upgrade from Directory Server 5.2 to Directory Server 5.2 2005Q4 by using the compressed archive, the upgrade can fail and the following error message can be given:

sh ./install.sh <server_root> <admin_id> <admin_pwd>
Can't create logfile: Permission denied at upgrade.pl line 272.

Workaround
Delete the log file /var/tmp/sync-log before performing the upgrade.

If you have started the upgrade, delete the log file /var/tmp/sync-log and rerun the upgrade.

Replication

Local Schema Modifications Can Be Overwritten When a Consumer Database Is Created (#4537230)

The replication monitoring tools rely on read access to cn=config to obtain the replication status. This should be taken into account when replication is configured over SSL.

In Directory Server 5.2, the schema file 11rfc2307.ldif has been altered to conform to rfc2307. If replication is enabled between 5.2 servers and 5.1 servers, the rfc2307 schema MUST be corrected on the 5.1 servers, or replication will not work correctly.

Workaround
To ensure correct replication between Directory Server 5.2 and Directory Server 5.1, perform the following tasks:

For zip installations, remove the 10rfc2307.ldif file from the 5.1 schema directory and copy the 5.2 11rfc2307.ldif file to the 5.1 schema directory.
Copy the following files from the 5.2 schema directory into the 5.1 schema directory, overwriting the 5.1 copies of these files:
11rfc2307.ldif, 50ns-msg.ldif, 30ns-common.ldif, 50ns-directory.ldif, 50ns-mail.ldif, 50ns-mlm.ldif, 50ns-admin.ldif, 50ns-certificate.ldif, 50ns-netshare.ldif, 50ns-legacy.ldif, and 20subscriber.ldif.
Restart the Directory Server 5.1 server.
In the Directory Server 5.2 server, set the nsslapd-schema-repl-useronly attribute under cn=config to on.
Configure replication on both servers.
Initialize the replicas.

Initially, certain schema attributes may be replicated between the servers as they synchronize other schema elements but this will not cause any problems. See the General Installation Information for details on how the schema has changed.

Directory Server Console

On Windows 2000 Service Pack 4 it is impossible to remove a directory instance via the console if that instance is not running (#4962625)

On Windows 2000 Service Pack 4 you cannot remove an instance using Directory Server Console unless it is running.

Workaround
Ensure that the instance is running before attempting to remove it using Directory Server Console

Core Server

The db2ldif command fails on Windows if the suffix to be exported specified by the -s option contains a subdomain (#4952347)

bak2db Command Generates Unnecessary Error Messages (#5068357)

When run on Windows platforms, the bak2db command can generate unnecessary errors 20741 and 20742. These errors are false errors.

Workaround
Ignore messages generated by errors 20741 and 20742.

Miscellaneous

SNMP is not supported on IPv6 on HP-UX (#4970378)

---

Redistributable Files

Sun Java System Directory Server 5.2 2005Q4 does not contain any files which you can redistribute.

---

How to Report Problems and Provide Feedback

If you have problems with this update, contact Sun customer support using one of the following mechanisms:

Sun Software Support services online at
http://www.sun.com/service/sunone/software

This site has links to the Online Support Center, and ProductTracker, as well as to maintenance programs and support contact numbers.

The SunSolve support website at
http://sunsolve.sun.com

This site includes patches, support documents, security information, and the Sun System Handbook.

The telephone dispatch number associated with your maintenance contract

So that we can best assist you in resolving problems, please have the following information available when you contact support:

Description of the problem, including the situation where the problem occurs and its impact on your operation
Machine type, operating system version, and product version, including any patches and other software that might be affecting the problem
Detailed steps on the methods you have used to reproduce the problem
Any error logs or core dumps

You might also find it useful to subscribe to the following interest groups, where Sun Java System Directory Server topics are discussed:

http://swforum.sun.com

Sun Welcomes Your Comments

Sun is interested in improving its documentation and welcomes your comments and suggestions. Use the web-based form to provide feedback to Sun:

http://www.sun.com/contact/feedback/?refurl=http://www.sun.com

Please provide the full document title and part number in the appropriate fields. The part number can be found on the title page of the book or at the top of the document, and is usually a seven or nine digit number. For example, the part number of these Directory Server 5.2 Release Notes is 819-4290-10.

---

Additional Sun Resources

Useful Sun Java System information can be found at the following Internet locations:

Sun Java System Documentation
http://docs.sun.com/db/prod/entsys.05q4
Java Enterprise System Software Services
http://www.sun.com/service/products/software/javaenterprisesystem
Sun Java System Software Products and Service
http://www.sun.com/software
Sun Java System Support and Knowledge Base
http://sunsolve.sun.com
Sun Java System Consulting and Professional Services
http://www.sun.com/service/products/software/javaenterprisesystem
Sun Developer Information
http://developers.sun.com
Sun Developer Support Services
http://www.sun.com/developers/support
Sun Software Data Sheets
http://wwws.sun.com/software
Directory Server Certified Engineer Training Program
http://training.sun.com/US/certification/enterprise

---

Copyright © 2005 Sun Microsystems, Inc. All rights reserved.

Sun Microsystems, Inc. has intellectual property rights relating to technology embodied in the product that is described in this document. In particular, and without limitation, these intellectual property rights may include one or more of the U.S. patents listed at http://www.sun.com/patents and one or more additional patents or pending patent applications in the U.S. and in other countries.

SUN PROPRIETARY/CONFIDENTIAL.

U.S. Government Rights - Commercial software. Government users are subject to the Sun Microsystems, Inc. standard license agreement and applicable provisions of the FAR and its supplements.

Use is subject to license terms.

This distribution may include materials developed by third parties.

Portions may be derived from Berkeley BSD systems, licensed from U. of CA.

Sun, Sun Microsystems, the Sun logo, Java and Solaris are trademarks or registered trademarks of Sun Microsystems, Inc. in the U.S. and other countries. All SPARC trademarks are used under license and are trademarks or registered trademarks of SPARC International, Inc. in the U.S. and other countries.

---

Copyright © 2005 Sun Microsystems, Inc. Tous droits réservés.

Sun Microsystems, Inc. détient les droits de propriété intellectuels relatifs à la technologie incorporée dans le produit qui est décrit dans ce document. En particulier, et ce sans limitation, ces droits de propriété intellectuelle peuvent inclure un ou plus des brevets américains listés à l'adresse http://www.sun.com/patents et un ou les brevets supplémentaires ou les applications de brevet en attente aux Etats - Unis et dans les autres pays.

Propriété de SUN/CONFIDENTIEL.

L'utilisation est soumise aux termes du contrat de licence.

Cette distribution peut comprendre des composants développés par des tierces parties.

Des parties de ce produit pourront être dérivées des systèmes Berkeley BSD licenciés par l'Université de Californie.

Sun, Sun Microsystems, le logo Sun, Java et Solaris sont des marques de fabrique ou des marques déposées de Sun Microsystems, Inc. aux Etats-Unis et dans d'autres pays.

Toutes les marques SPARC sont utilisées sous licence et sont des marques de fabrique ou des marques déposées de SPARC International, Inc. aux Etats-Unis et dans d'autres pays.