iChain 2.0 Field Patch 2
Novell Cool Solutions: Tip
Digg This -
Posted: 17 Dec 2001
Version: iChain 2.0
This file contains updates for services contained in the iChain 2.0 product. The purpose of the patch is to provide a bundle of fixes for issues that have surfaced since iChain 2.0 shipped. It is not recommended to install individual files from the patch. This build is currently PARTNER release and subject to change. Novell Technical Support recommends checking the version number on the final (PUBLIC) build to verify that no files have changed.
Click this filename to download: ic20fp2.exe; 4520857 bytes
IC20FP2.EXE will extract into three files: iChain20_fp2.zip, iChain20_fp2.txt and iChain20fp2.txt.
iChain20_fp2.zip is the OTWUG (Over The Wire Upgrade).
iChain20_fp2.txt is the installation file for the OTWUG.
iChain20fp2.txt is the readme for the patch.
- Copy iChain20_fp2.zip & iChain20_fp2.txt to a directory on a Web Server that can be accessed by the iChain appliance and a workstation that will run the iChain Appliance Configuration GUI.
- Modify the URL line in the iChain20_fp2.txt file so that it contains the appropriate path/URL to the iChain20_fp2.zip file. For example, if the zip file was placed at the default/root directory of a Web Server with the IP address 10.10.10.1 then change url=http://*** location ***/iChain20_fp2.zip to url=http://10.10.10.1/iChain20_fp2.zip.
- In the Appliance Configuration GUI under System | Upgrade | Install from URL, put in the matching URL to the .txt file. Using the example above: http://10.10.10.1/iChain20_fp2.txt. NOTE: Point to the .txt installation file, not the .zip file.
- Check the "Enable download" and "Enable install" boxes.
- Specify times to begin the download and install.
- Click on "Apply"
Fixes in this patch
- Unable to tunnel ICA client
- The \ETC\TCPIP.CFG file may have duplicate IP addresses.
- DGI: ACLCheck error 85 when using large group
- http://username:password@destination gets transposed by rewriter
- Added ability to turn on advanced Mutual Authentication troubleshooting
error messages. Requires the following entry in the PROXY.CFG file:
Note: After modifing the PROXY.CFG file restart the server to read the new configuration.
Fixes in IC20FP1.EXE (included in this patch)
- With 10 clients running, adding an IP and "APPLY" caused an abend
- User cannot authenticate with certificate if his cert is the end node in a three-tier chain
- NILE is not sending all the certificates in the certifiate chain.
- NILE allows users to authenticate that failed the certificate validation.
- Cert. authentication error handling.
- SessionBroker failover too slow.
- Abend in the custom rewriter.
- In some cases Ldap failover for OLAC does not work.
- Need to remove use of JSSE.JAR for France version of Proxy Server.
- IChain doesn't reboot after OTWUG.
- Abend in server.c with 'connect' call on port 80.
- Problem using multiple authentication schemes, LDAP: CN and EMAIL auth in same session.
- CPU hog when using new rewriter option.
- L4 switch breaking cookie authentication.
- Auth failures when going thru transparent proxy and L4 switch.
- Persistent connection problems in the 2.0.191 build of FP1.
For more information see TID: 2960921