Chapter 1. General information
Lean about Red Hat Directory Server 12 general information that is independent of the minor versions.
1.1. Directory Server support policy and life cycle
For details, see the Red Hat Directory Server Errata Support Policy document.
1.2. Software conflicts
You cannot install Directory Server on a system that has a Red Hat Enterprise Linux Identity Management (IdM) server installed. Likewise, no Red Hat Enterprise Linux IdM server can be installed on a system with a Directory Server instance.
1.3. Migrating to Directory Server 12
- For a procedure about migrating Directory Server 11 to Directory Server 12, see the Migrating Directory Server 11 to Directory Server 12 chapter.
- For a procedure about migrating Directory Server 10 to Directory Server 12, see Migrating Directory Server 10 to Directory Server 12 chapter.
1.4. Notes about migrating to Directory Server 12
Winsync
and PassSync
have been deprecated in 12.6
The Winsync
plug-in and PassSync
package that were used for synchronization with Active Directory have been deprecated in Red Hat Directory Server 12.6 and will be removed in future releases because PassSync
is not maintained upstream. Consider using Identity Management (IdM) and cross-forest trust for Active Directory as an alternative.
The Directory Server 12 default password storage scheme is PBKDF2-SHA512
Directory Server 12 uses the PBKDF2-SHA512
scheme as a default password storage scheme, which is more secure than SSHA
, SSHA512
, and other schemes. Therefore, if some of your applications, such as freeradius, do not support the PBKDF2-SHA512
scheme, and you must set a weaker password storage scheme back, note that Directory Server updates user passwords not only when an application adds or modifies the user entry, but also during a successful bind operation. However, you can disable an update on bind operations by setting the nsslapd-enable-upgrade-hash
parameter in the cn=config
entry to off
.
New command-line utilities starting Directory Server 11
Since version 11, Directory Server provides new command line utilities to manage server instances and users. These utilities replace the Perl scripts used for management tasks in Directory Server 10 and earlier versions.
For a list of commands in previous versions and their replacements in Directory Server 12, see the Command-line utilities replaced in Red Hat Directory Server 11 appendix in the Red Hat Directory Server Installation Guide.