Environment
Novell Open Enterprise Server 2 (OES 2) Linux Support Pack 3
Novell Open Enterprise Server 11 (OES 11) Linux
Situation
ncpcon nss verify=<volumename> returns inconsistencies
between NSS trustees and NCP trustees.
Resolution
These reported errors are cosmetic and don't affect the actual
trustee being enforced. It has been fixed but is not yet in
the patch channel. If you are interested in applying this fix
on top of the OES2SP3 July 2012 maintenance update, please contact
Novell Support.
Cause
There are 3 cases that were not being handled properly.
1. Any directory names in the trustee path or eDirectory users or groups with special characters will show differences. Special characters would include "&" and apostrophe's " ' "
NCP maps these as & and ' which will be shown in the ncpcon nss verify output.
2. Any trustee assignments which don't have any rights assigned.
3. Any trustee assignments still there for deleted users. These will show up in the verify log as "Unknown(21350"
1. Any directory names in the trustee path or eDirectory users or groups with special characters will show differences. Special characters would include "&" and apostrophe's " ' "
NCP maps these as & and ' which will be shown in the ncpcon nss verify output.
2. Any trustee assignments which don't have any rights assigned.
3. Any trustee assignments still there for deleted users. These will show up in the verify log as "Unknown(21350"