Manualshelf

User guide

ManualsBrandsAlcatel ManualsComputer equipmentOS6602-24
919293949596979899100
Open Problem Reports and Feature Exceptions
page 96 OmniSwitch 6600/7000/8800—Release 5.1.5.R04
PR 58192
If an LDAP server is configured in SSL mode on the OS7000 with a TCP port value equal to a non-SSL
port configured on the LDAP server side, then LDAP communication is not possible between the switch
and the server. Some resources may remain unfreed in the switch.
Workaround: When configuring the SSL port, port numbers are the same on both sides. This is espe-
cially true if one is not using the following default port numbers: SSL port = 636 and no SSL port = 389.
Using the default value for the port number is best to avoid inconsistency. If used, it is not necessary to set
the SSL port number but just necessary to enable or disable SSL through WebView or CLI. When the SSL
port number is not mentioned, AAA software initializes with the default values.
PR 63509
Sometimes, on the OS7000, Windows XP does not load the right HTTP authentication applet when the
java development kit 1.4 is installed (JDK 1.4) and the SUN java virtual machine (JVM) is used instead of
the Microsoft JVM.
Workaround: The solution is to uninstall the JDK 1.4 and to use only the Microsoft’s JVM with
WindowsXP SP1 when it is available.
PR 66469
Sometimes after takeover, using the HTTP authentication method may cause an AVLAN user to have
authentication problems if the Java applet which performs IP reconfiguration fails to be downloaded.
Workaround: Manually reconfigure IP using "ipconfig /release" & "ipconfig /renew" on the Client PC or
remove the authenticated MAC address using the CLI command aaa avlan no mac-address" and attempt-
ing a new authentication.
PR 68240
When an LDAP SSL certificate expiration occurs, the current SSL connection remains established until
the TCP connection is broken on the OS7000. But due to the periodic bind between the switch and the
server, the TCP connection stays up and the SSL handshake is not done again with the new certificate.
If the switch does not reboot more than once a year, user may observe the certificate expiration a long time
after it really occurs.
Workaround: There is no known workaround at this time.
PR 68485
policy server load and policy server flush provoke a flush of the CAM MAC SA which leads to discon-
necting AVLAN users on the OS7000.
Workaround: After loading or flushing a QoS policy, it is necessary to perform a new authentication
from AVLAN users.