November 17, 2006
The Novell® Client™ for Windows 2000/XP/2003 4.91 SP 3 contains bug fixes only. For a list of fixes, see Section 6.0, Fixes Since the Last Release.
This release includes additional Forgotten Password Recovery functionality. When a user logs in, the Novell® Client™ checks to see if the password policy uses Challenge Response and if the user has entered responses. If responses have not been entered, the user is notified and a dialog box opens so that he or she can enter the responses. Additionally, if the password policy uses a password hint or a password reminder and this had not been set, the Novell Client prompts the user to enter this information.
This release includes a new feature that lets users recover a forgotten password by using the “Forgot your password” link in the client login dialog box. For more information, see Using the “Forget Your Password?” Link in the Novell Client for Windows Installation and Administration Guide.
The following features are new in version 4.91:
The NetIdentity agent can be installed with the Novell Client or as a separate installation. It provides background authentication to Windows Web-based applications that require Novell eDirectory™ authentication, such as iPrint, Novell Virtual Office, and NetStorage.
The following changes have been made in version 4.91:
The Novell Client for Windows supports the following Windows operating systems:
IMPORTANT:The Novell Client does not run on Windows XP Home Edition, Windows XP 64-bit Edition, or Windows Server 2003 64-bit version.
The Novell Client for Windows works with all current versions of NetWare and Open Enterprise Server for Linux.
By default, the Novell Client attempts to perform an NMAS™ login using the NMAS login sequence that is configured in eDirectory. If nothing is specified, the Novell Client uses the default NMAS login sequence. This automatic fallback to the default can fail when logging in against an NMAS 188.8.131.52 server.
In the Login dialog box, select Sequence drop-down menu., select the tab, and then select in the
Do not install SecureLogin 3.5 SP1 (or earlier) after installing the Novell Client 4.91. SecureLogin installs NMAS Client 2.7 over the NMAS Client 3.0. The Novell Client requires the NMAS Client 3.0; it is not compatible with the previous versions of the NMAS Client.
To solve this, reinstall the Novell Client 4.91.
If you remark out (rem) the NMAS load line in the autoexec.ncf file on a NetWare 6.5 server, the Novell Client cannot log in to the server. NMAS should not be removed from a NetWare 6.5 server.
You cannot copy, cut, or paste from within some fields of the contextless login property page.
Users and workstations can no longer authenticate through the middle tier after installing the Novell Client. For more information, see TID 10093371.
When configured for passive mode login, the Novell Client’s NWGina defers to the Microsoft Graphical Identification and Authentication Dynamic Link Library (MSGINA.DLL) for the initial workstation login. After authentication to the workstation, NWGina attempts to authenticate to the Novell environment. The username and password used for workstation authentication are used for the Novell authentication.
To successfully authentication to the Novell environment, the username must exist in eDirectory, and the default location profile must be properly configured with the Tree and Context information.
To enable passive mode login, set the following registry keys:
“PassiveModeNDSLoginSilent”=dword:00000000 or 00000001
“PassiveModeNDSLoginRequired”=dword:00000000 or 00000001
The following in a run key example:
“nwscript=reg_expand_sz:loginw32.exe %username% /NA /CONT
By default, the Client version 4.91 and later implements the Novell Universal Password, which provides robust and strong passwords. As a part of this implementation, Novell Client installs NMAS and NICI.
NMAS authentication adds additional security to the network. However, if your network does not use NMAS, login might take additional time and you might want to disable NMAS authentication on the server and not install it with the Novell Client software. Novell Client installs NICI Client 2.7 and NMAS Client 3.0 by default. If you do not want to install them during the Client installation, install using a configuration file (unattend) that specifies not to install them. For more information, see the Novell Client for Windows Installation and Administration Guide.
For more information on disabling NMAS, see Disabling NMAS on the Server in the Novell Modular Authentication Services 2.3 x Administration Guide.
For more information on deploying universal passwords, see Deploying Universal Password in the Novell Modular Authentication Services 2.3 x Administration Guide.
Newer versions of the NetIdentity client files, such as the version shipping with the Novell Client versions 4.9, 4.9 SP1, 4.9 SP2, and 4.91, have a different architecture than the version shipping with ZENworks for Desktops 4.0.1(and updates), even though the filenames are the same.
If you try to install the NetIdentity client after installing the ZENworks Management Agent, the following error message is displayed:
This version of NetIdentity cannot be installed over Novell ZENworks for Desktops (ZfD). You must either uninstall ZfD or wait to upgrade NetIdentity with the next release of ZfD.
You cannot install an updated NetIdentity.
However, if the newer version of NetIdentity is already installed on a workstation, a subsequent installation of the ZENworks Management Agent will not detect the newer versions of the NetIdentity files, so the Agent installation program overwrites the newer files. Later, when users log in to the workstation or select the NetWare Logon from the red N in the Quick Launch bar, the workstation freezes.
In this situation, we recommend that you use the Add/Remove Programs utility (available from the Windows Control Panel) to uninstall NetIdentity and then install the ZENworks Management Agent.
Files with extended attributes do not copy to a Linux* NSS volume using NCP™. To solve this problem, use CIFS to copy files with extended attributes to a Linux server. Or, copy files from a Netware server that has extended attributes to a FAT32 (not NTFS) drive first, and then recopy the files to a OES Linux server.
The following bugs have been fixed with this release of the Novell Client for Windows 2000/XP/2003 4.91 SP 3:
For documentation on installing and configuring Novell Client software, see the Novell Client for Windows Installation and Administration Guide.
For documentation on managing login scripts, see the Novell Login Scripts Guide.
For information on configuring and using Universal Password, see the Novell Password Management Administration Guide.
If you are using Novell Modular Authentication Services (NMAS) in your network, you should also read the NMAS readme. Because the NMAS installation has been integrated in to the Novell Client installation, issues that affect NMAS could also affect the Novell Client.
Novell, Inc. makes no representations or warranties with respect to the contents or use of this documentation, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc. reserves the right to revise this publication and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes.
Further, Novell, Inc. makes no representations or warranties with respect to any software, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc. reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to notify any person or entity of such changes.
Any products or technical information provided under this Agreement may be subject to U.S. export controls and the trade laws of other countries. You agree to comply with all export control regulations and to obtain any required licenses or classification to export, re-export, or import deliverables. You agree not to export or re-export to entities on the current U.S. export exclusion lists or to any embargoed or terrorist countries as specified in the U.S. export laws. You agree to not use deliverables for prohibited nuclear, missile, or chemical biological weaponry end uses. Please refer to www.novell.com/info/exports/ for more information on exporting Novell software. Novell assumes no responsibility for your failure to obtain any necessary export approvals.
Copyright © 2006 Novell, Inc. All rights reserved. No part of this publication may be reproduced, photocopied, stored on a retrieval system, or transmitted without the express written consent of the publisher.
Novell, Inc. has intellectual property rights relating to technology embodied in the product that is described in this document. In particular, and without limitation, these intellectual property rights may include one or more of the U.S. patents listed at http://www.novell.com/company/legal/patents/ and one or more additional patents or pending patent applications in the U.S. and in other countries.
For Novell trademarks, see the Novell Trademark and Service Mark list.
All third-party trademarks are the property of their respective owners.