LDAP-UX Integration B.04.20 Release Notes (June 2009)
2 New in LDAP-UX Integration B.04.20
LDAP-UX Integration B.04.20 offers the following new features:
• Windows 2008:
Supports Active Directory Server for Windows 2008
• IBM TDS:
Supports IBM Tivoli Directory Server v6.2
• Larger NGROUPS:
As part of the effort to increase the NGROUPS limit, HP-UX now includes a new kernel
tunable, ngroups_max, that specifies the maximum number of supplementary groups that
can be associated with a user or process. LDAP-UX Integration now uses the kernel tunable
ngroups_max and is no longer limited by the value of the constant NGROUPS where user
accounts were limited to being members of at most 20 groups. For more information, refer
to the HP-UX 11i Version 3 September 2008 Release Notes.
• The pam_ldap module was enhanced to support the following options:
— ignore: Use this option in conjunction with the pam_user.conf file to skip
LDAP-based authentication for specific users.
— deny_local: Instructs pam_ldap not to authenticate any users found in the LDAP
directory server that have either the same account name or same account number as
any account defined in the /etc/passwd file.
• Updates the LDAP SDK to Mozilla version 6.0.5.
11