by ldapdotcom
Bookmark

ForgeRock Directory Services 7.4

ForgeRock Directory Services version 7.4 has been released. According to the release notes, changes in this release include:

  • Added support for an HDAP protocol, for accessing LDAP data over HTTP
  • Updated access log messages to include time spent in the work queue, and for filtering messages based on queue time
  • Changed the values of some access log fields from null to true
  • Added support for including details about modified attributes in access log messages
  • Added support for logging details about TLS negotiation
  • Updated access log messages to include user-friendly names for request controls and details about their values
  • Simplified debug logging with predefined logging categories
  • Added monitor attributes about changelog purging
  • Updated the attribute value password validator to add support for checking substrings
  • Added support for renaming collective attributes
  • Added attribute syntax checking support for certificate lists, certificate pairs, and postal address syntaxes
  • Updated replication to log a warning on some kinds of fractional replication configuration issues
  • Improved performance for evaluating OR filters with multiple components targeting the same attribute type
  • Updated GSSAPI authentication support to allow multiple service principals
  • Simplified configuring PKCS #11 key managers
  • Updated Debian and Red Hat packages to use systemd instead of init files for starting the server on boot
  • Updated dsconfig help and the configuration reference to better identify deprecated and legacy configuration options
  • Updated command-line tools supporting PKCS #11 to allow specifying alternative provider details
  • Updated the backendstat subcommands for listing indexes in order by name
  • Fixed an issue in which the unindexed-search privilege may not be enforced for sorted and paged searches
  • Reduced memory usage for the Argon2 password storage scheme
  • Fixed a performance issue when searching for attributes not defined in the schema
  • Updated the server to return an unavailable result instead of unwillingToPerform if it becomes disconnected from replication servers
  • Fixed an issue in which virtual attribute providers could ignore critical controls during search processing