Solaris 9 12/03 Release Notes

Sun ONE Directory Server Bugs

Cannot Inactivate Users Through Console (4521017)

If you launch the Sun ONE Directory Server 5.1 Console and create a new user or new role as inactive, the newly created user or newly created role is not inactivated. Users and roles cannot be created through the Console as inactive.

Workaround: To create an inactive user or inactive role, follow these steps:

  1. Create the new user or new role.

  2. Double-click the newly created user or newly created role. Or, select the newly created user or newly created role. Click the Properties item from the Object menu.

  3. Click the Account tab.

  4. Click the Inactivate button.

  5. Click OK.

The newly created user or newly created role is inactivated.

Cannot Configure Directory With a Root Suffix That Contains Spaces (4526501)

If you specify a base DN that contains a space, for example, o=U.S. Government,C=US at Sun ONE Directory Server 5.1 configuration time, the resulting DN is truncated to Government,C=US. At configuration time, the DN should be typed as o=U.S.%20Government,C=US.

Workaround: To correct the base DN entry, follow these steps:

  1. Select the top directory entry in the left side of the navigation pane of the Servers and Applications tab on the Console.

  2. Edit the suffix in the User directory subtree field.

  3. Click OK.

Password Policy Information Is Not Synchronized Between Servers (4527608)

If you update a nonmaster directory server with password policy information, the information is not replicated to all other servers. This information includes account lockouts.

Workaround: Manage password policy information manually on each server.

Account Lockout Remains Effective After the User Password Is Changed (4527623)

If Account Lockout is effective and the user password is changed, Account Lockout remains effective.

Workaround: Reset the accountUnlockTime, passwordRetryCount, and retryCountResetTime lockout attributes to unlock the account.

Console Backup Done Immediately After Installation Fails (4531022)

If you install the Sun ONE Directory Server 5.1, start the console, initialize the directory with an LDIF file, and then back up the server, the Console reports the backup was successful. However, the backup has actually failed.

Workaround: Perform the following tasks from the Console after you initialize the database:

  1. Stop the server.

  2. Restart the server.

  3. Perform the backup.

Server Ignores Case-Sensitive Syntax When Normalizing DN Attributes (4630941)

You cannot use the LDAP naming services to create automount path names that are identical, with the exception of case results in nonunique path names. The directory server does not allow creation of entries if the naming attribute is defined with case-sensitive syntax, and an entry already exists with the same name, but a different case.

For example, /home/foo and /home/Foo paths cannot coexist.

If entry attr=foo,dc=mycompany,dc=com exists, the server does not allow the creation of attr=Foo,dc=mycompany,dc=com. A corollary of this problem is when LDAP naming services are used, automount path names have to be unique, regardless of their case.

Workaround: None.

Stopping the Server During Export, Backup, Restore, or Index Creation Crashes the Server (4678334)

If the server is stopped during export, backup, restore or index creation, the server crashes.

Workaround: Do not stop the server during these types of operations.

Replication Unable to Use Self-Signed Certificate (4679442)

If you attempt to configure replication over SSL with certificate-based authentication, replication does not work if either of the following conditions exist:

Workaround: None.