Domain Services for Windows in OES 11 SP2 has been modified to run on 64-bit SUSE Linux Enterprise Server (SLES) 11 SP3.
IMPORTANT:To use the DSfW features introduced in the OES 11 SP2 release, you must upgrade all Domain Controllers in the DSfW domain to OES 11 SP2.
In addition to bug fixes, Domain Services for Windows provides the following enhancements in the OES 11 SP2 release:
Duplicate workstation names in a domain lead to several issues such as slow user logins. Configuring a DSfW server as a WINS server helps to prevent having two workstations with the same name in a domain. For more information, see “Configuring DSfW Server as a WINS Server” in the OES 11 SP2: Domain Services for Windows Administration Guide.
The sites and subnets feature enables you to configure multiple sites and distribute domain controllers over different geographical locations. When a client tries to log in to a domain, the request goes to the nearest available domain controller, thus ensuring faster domain login. For more information, see “Configuring Sites and Subnets” in the OES 11 SP2: Domain Services for Windows Administration Guide.
Beginning with OES 11 SP2, DSfW supports the OS X 10.8 and OS X 10.9 clients. This support enables you to join a Mac client to a DSfW domain, log in to the domain using DSfW credentials, and access NSS shares. For more information, see “Using Mac Client” in the OES 11 SP2: Domain Services for Windows Administration Guide.
DSfW now includes NTLM support for LDAP authentication. If Kerberos is down or a legacy third-party application is limited only to NTLM authentication, the NTLM support for LDAP authentication goes into effect. This NTLMSSP support is layered over the SASL GSS-SPNEGO mechanism. For more information, see “Support for SASL NTLMSSP Bind in LDAP” in the OES 11 SP2: Domain Services for Windows Administration Guide.
DSfW now enables co-existence of Novell Client with DSfW. Users can now authenticate to a DSfW server using Novell Client. You can now join a workstation pre-installed with Novell Client to a DSfW domain without affecting the DSfW communication.
With Novell Client support, Windows operations such as domain login, password change, GPO policy, content redirection, roaming profile, folder redirection, and advanced login parameters will work.
This feature also enables you to leverage Novell Client features such as login scripts, LDAP contextless login, login with profile, and automated login. For more information about Novell Client features, see the Novell Client 2 SP3 for Windows Administration Guide.
Beginning with OES 11 SP2, DSfW supports Windows 8 as a client workstation.
Beginning with OES 11 SP2, DSfW supports Windows 2012 as a member server.
DSfW install has been modified to not install NSS by default. This is to ensure that the DSfW server is used only as a domain controller with no other services installed by default. Novell recommends that you not install other services such as file, print, or iManager on the same server as DSfW.
NTP-signed requests from Windows clients can now be addressed by using the cross_partition_ntp_setup.pl script. Execute this script only if /var/lib/ or /var/opt/ directory hierarchies are in different partitions. For more information, see "DSfW Fails to Set Up Signed NTP for Clients to Trust" in the OES 11 SP2: Domain Services for Windows Administration Guide.