Red Hat Directory Server B.08.00.02 for HP-UX Release Notes and Supplemental Instructions
1.3 New Features provided with Red Hat Directory Server 8.0
Red Hat Directory Server 8.0 (B.08.00.00) introduces the following features:
• Stronger Hashed Password Storage Support
Red Hat Directory Server 8.0 supports the following hash algorithms for storing passwords
in addition to SHA-1:
— SHA-256
— SHA-384
— SHA-512
— MD5
These algorithms provide additional cryptographic strength.
• IPv6 Support for Client Access
Red Hat Directory Server 8.0 supports incoming connections from IPv6 clients. Additionally,
the LDAP SDK has been enhanced to support IPv6. Red Hat Directory Server 8.0 provides
many command-line tools and scripts that can understand and use IPv6 addresses.
Red Hat Directory Server 8.0 does not support IPv6 addresses in directory database access
control instructions or IPv6 connections for certain operations such as replication and
chaining.
• Improved SASL Support for Kerberos Authentication
Red Hat Directory Server 8.0 improves Secure Authentication and Security Layer (SASL)
authentication using Generic Security Service Application Programming Interfaces (GSS-API)
to a Kerberos domain. In addition, the LDAP command-line utilities (such as ldapsearch
and ldapmodify) have been enhanced to support SASL.
• File Hierarchy System Support
Instead of installing the product in a single directory, the Red Hat Directory Server 8.0 for
HP-UX installation script installs the product in multiple directories using a hierarchical
structure that conforms to the file hierarchy system used for other HP-UX products. This
structure uses different directories for configuration data, server application data, and binary
files. This structure enables you to use multiple file systems to store product data and files.
• Improved Password Quality Policy Management and Enforcement
Red Hat Directory Server 8.0 enhances password syntax checking to enforce its password
policies. You can configure password syntax checking globally, for a subtree, or for a user.
The default minimum password length in Red Hat Directory Server 8.0 is set to eight
characters. Red Hat Directory Server 8.0 provides the following optional categories for the
password syntax to support more password quality enforcement options:
— Minimum number of digit characters (0-9)
— Minimum number of ASCII alphabetic characters, both uppercase and lowercase
— Minimum number of uppercase ASCII alphabetic characters
— Minimum number of lowercase ASCII alphabetic characters
— Minimum number of special ASCII characters, such as !@#$
— Minimum number of 8-bit characters
— Maximum number of times that the same character can be immediately repeated, such
as aaabbb
— Minimum number of character categories required for each password. A category can
be upper- or lower-case letters, special characters, digits, or 8-bit characters.
• Standalone Directory Servers
Red Hat Directory Server 8.0 enables administrators to create standalone Directory Server
instances. A standalone Directory Server is not managed by the centralized administrative
8 Release Notes for Red Hat Directory Server 8.0