Patch-ID# 116373-09 Keywords: dps 5.2 Synopsis: DPS 5.2 : Directory Proxy Server 5.2 patch 2 Date: May/28/2004 Install Requirements: None Solaris Release: 8 9 SunOS Release: 5.8 5.9 Unbundled Product: Directory Proxy Server Unbundled Release: 5.2 Xref: This patch available for i386 as patch 116374 NOTE: Refer to Special Install Instructions section for specific information on this patch. Topic: Directory Proxy Server 5.2 Patch 2 Relevant Architectures: sparc BugId's fixed with this patch: 4554991 4555088 4789877 4870271 4874761 4891322 4892644 4894043 4895804 4919517 4933448 4934980 4935314 4942940 4966944 4976424 4984682 4984800 4990235 4992270 4994492 4997218 5006308 5031413 Changes incorporated in this version: 5031413 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: 115610-09 or greater Obsoleted by: Files included with this patch: /usr/sadm/mps/admin/v5.2/bin/dps/COPYRIGHT /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dps52cfgUnix.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dps52ins.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dps52insUninstall.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dps52svrUnix.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dpsClean.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dpsInitLdif.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/dpsSetup.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/quickstart.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/rminstance.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/sync-dps-cds.tcl /usr/sadm/mps/admin/v5.2/bin/dps/install/script/sync-dps.tcl /usr/sadm/mps/admin/v5.2/bin/dps/license.txt /usr/sadm/mps/admin/v5.2/bin/dps/server/bin/ldapfwd /usr/sadm/mps/admin/v5.2/bin/dps/server/script/start /usr/sadm/mps/admin/v5.2/java/jars/dps522.jar /usr/sadm/mps/admin/v5.2/java/jars/dps522_en.jar /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Action-ChangeGroup.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Event-OnBind-Conditions.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Event-OnBind-Event.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Event-OnSSL.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Attribute-Renaming.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Attribute-Return.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Attribute-Search.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Compatibility.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-DataHiding-Entry.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-DataHiding-Subtree.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Encryption.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Forwarding-Bind.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Forwarding-Operations.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-General.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Network.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Referral.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Search-Control.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Search-References.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Search-Scope.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-Search-Size.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-ServerLoad.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/NetworkGroup-loadbalance.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-AttributeRenaming.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-ForbiddenEntry-AttributeFiltering.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-ForbiddenEntry-EntryMatching.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-LDAPServer-Encryption.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-LDAPServer-LDAPVersion.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-LDAPServer-Settings.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-LoadBalancing.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-Logging-Level.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-Logging-Output.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-Logging-Settings.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Property-SearchSizeLimit.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/Server-Configuration-Main.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/SunONE.jpg /usr/sadm/mps/admin/v5.2/manual/en/dps/help/System-Encryption.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/System-Encryption_cipher.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/System-Settings-Connections.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/System-Settings-SSL.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/System-Settings-Unix.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/System-Settings.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/configuration-objectview.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/configuration-topology.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/help_contents.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/server-configuration-logfile.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/server-configuration-logs-detail.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/server-configuration-logs-output.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/server-configuration-logs-rotation.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/server-configuration-logs.html /usr/sadm/mps/admin/v5.2/manual/en/dps/help/server-configuration-netsettings.html /usr/sadm/mps/admin/v5.2/setup/dps/locale/resources/DpsSetupResources.properties Problem Description: 5031413 On line Help : cannot access on line help pages from the configurator sub menus (from 116373-08) 5006308 search on secure connection is interrupted (from 116373-07) 4870271 DPS Topology Configs do not display help under certain conditions (from 116373-06) 4992270 Server Load parameters are not consulted when a Change Group operation occurs 4789877 Wrong message if DS not started at DPS startup time 4934980 Cannot unconfigure as non-root (SolPkg) 4942940 5.2 install fails when running setup as root but specifying non-root user 4976424 Group change can lead to incorrect load balancing 4997218 Need more details in quickstart.tcl error logs 4990235 DPS 5.2: attribute renaming doesn't work when filter contains a NOT operator 4984800 Cannot perform search with empty attribute type (from 116373-05) 4966944 Sun ONE Directory Proxy Server 5.2 should use the short length form when possibl 4994492 removing a DPS instance may remove certificates of other instances (from 116373-04) 4984682 Removing one instance unregisters SIEs of all instances in CDS (from 116373-03) (from 116373-02) 4554991 Save button always enabled for OnSSLEstablished Event 4555088 Health check must do more than just connect 4919517 DPS does not find component libs (from 116373-01) 4892644 SSL referral hangs the client 4891322 ldapfwd generates core during high load with referrals 4894043 Search Referral crashes proxy when configured to discard the reference 4933448 Directory Proxy Server 5.2 patch 3 crashes when referred-to server is down. 4874761 Daemon doesn't start when SSL configured and token requested on command-line 4895804 Typo prevents Solaris Native Mode packages from checking dependencies 4935314 Directory Proxy Server crashes during a ldap_modify Patch Installation Instructions: -------------------------------- Upgrading Directory Proxy Server You upgrade Directory Proxy Server by applying patches, and synchronizing settings with the configuration directory server. ------------------------------------------------------------------------ Notes 1. Directory Proxy Server belongs to a group of products sharing the same Administration Server. You must patch all of these products at the same time. 2. You cannot upgrade Directory Proxy Server by applying patches unless Directory Proxy Server was installed on a Solaris system with SUNWdps* packages. 3. When you patch Directory Proxy Server, the SSL certificate database is updated. If you subsequently decide to back out the patches *and* you have changed the content of the certificate database, you must *manually replay* the changes after backing out the patches. Directory Proxy Server cannot start in secure mode when you back out patches after changing the server certificate. ------------------------------------------------------------------------ Applying Patches 1. Follow the instructions for applying patches included in the Administration Server patch README file. The Administration Server patch is 115610-09. You *must* follow these instructions and apply Administration Server patches *even if you have never explicitly selected Administration Server for installation.* You can obtain patches from http://sunsolve.sun.com/pub-cgi/show.pl?target=patches/patch-access. 2. If Directory Proxy Server is configured and did not synchronize settings with the configuration server when patches are applied, manually synchronize the upgraded Directory Proxy Server settings with those stored in the configuration directory server. # /usr/sadm/mps/admin/v5.2/bin/tcl8.2/tclsh # /usr/sadm/mps/admin/v5.2/bin/bin/dps/install/script/sync-dps-cds.tcl -cid /usr/sadm/mps/admin/v5.2 -serverroot Where: * is / by default, and therefore can be left out. * The -cid option takes a full path, , such that the program can assert that the following directory exists: /bin/dps/install/script * The -serverroot option takes the full path to an installed and configured Administration Server. The script validates that the following files exist: /admin-serv/config/adm.conf /admin-serv/config/jvm12.conf The configuration directory server must be available for this step to complete properly. ------------------------------------------------------------------------ Removing Patches 1. If Directory Proxy Server is configured, return to the pre-patch settings stored in the configuration directory. # /usr/sadm/mps/admin/v5.2/bin/tcl8.2/tclsh # /usr/sadm/mps/admin/v5.2/bin/bin/dps/install/script/sync-dps-cds.tcl -cid ${AS_BASEDIR}/usr/sadm/mps/admin/v5.2 -serverroot -v5.2 Notice the trailing -v5.2 option. Where: * is / by default, and thus may be left out. * The -cid option takes a full path, , such that the program can assert that the following directory exists: /bin/dps/install/script * The -serverroot option takes the full path to an installed and configured Administration Server. The script validates that the following files exist: /admin-serv/config/adm.conf /admin-serv/config/jvm12.conf The configuration directory server must be available for this step to complete properly. 2. Follow the instructions for removing patches included in the Administration Server patch README file. ------------------------------------------------------------------------ Troubleshooting * If after applying the patches, you still see a Sun ONE-branded console rather than a Sun Java System-branded console, verify that you effectively synchronized with the configuration directory server. * If backing out the patches did not work, this could be because the upgraded Directory Proxy Server was not synchronized with the configuration directory server before you tried to back out patches. Try the entire process again, starting from Applying Patches. ------------------------------------------------------------------------ Special Install Instructions: -------------------------- None. README -- Last modified date: Friday, May 28, 2004