System information
Known Issues and Limitations
Part Number 817-5216 Page 19 of 32
[03/Dec/2003:11:32:54 -0500]ERROR<5897> - Schema - conn=-1 op=-1 msgId =-1 - User
error: Entry "cn=Password Policy,cn=config", attribute "passwordisglobalpolicy" is not
allowed
[03/Dec/2003:11:32:54 -0500] - Sun-ONE-Directory/5.2 B2003.143.0020 (64-bit) starting
up
Workaround
Ignore the incorrect error message.
ldapmodify update operations over SSL that are referred to a master replica from a consumer replica
do not succeed (#4922620)
Invalid value accepted for passwordMinLength attribute when configuring an individual password
policy (#4969034)
Using the attribute encryption functionality may result in generating duplicate values for the UID
attribute (#4997578)
The insync replication monitoring tool prints the password on UNIX when “-” is entered for the -w
option (#4902013)
Account lockout after password change (#4527623)
Account lockout remains in effect after a user password has been changed. If users forget their
passwords and are locked out of the directory, the rootDN or entry entitled to change the user
password can reset the account lock.
Replication
Additional documentation required on using referential integrity plug-in with legacy replication
(#4956596)
When replicating from a 4.x master to a 5.x consumer, with referential integrity enabled, you must
reconfigure the referential integrity plug-in on the 4.x master to write referential integrity changes
to the 4.x change log. This enables referential integrity changes to be replicated. If you do not
reconfigure the plug-in, referential integrity will not work correctly.
Workaround
To reconfigure the referential integrity plug-in in this environment:
1.
Stop the 4.x server.
2.
Open the
slapd.ldbm.conf
file located in
ServerRoot
/slapd-
ServerID
/config/
.
3.
Locate the line that begins: