OpenDJ improves on earlier releases introducing many new features. Also take the following into account.
-
The upgrade process and upgrade command have changed to facilitate native packaging on more platforms. See Upgrading to OpenDJ ${stableServerVersion} for instructions.
-
The default DB cache size is now 50%, rather than 10%.
If you have multiple backends, configure cache sizes accordingly.
-
The number of LDAP request handlers now defaults to half the CPU count.
-
The replication purge delay default has increased from one day to three days.
-
Syntax checking has been added for certificate and country attribute values. This affects applications updating those attribute values. Applications updating country attribute values must now use Country String syntax for example, which uses two-character codes from ISO 3166 such as
USinstead of full names such asUnited States. -
The following global ACI settings have changed.
-
OpenDJ directory server now allows any client to use the LDAP Permissive Modify Request control,
1.2.840.113556.1.4.1413, by default for newly installed servers. -
The "Anonymous read access" global ACI has changed. The list of attributes that are not allowed has been changed to add
includedAttributesand to removetargetUniqueID.
When you upgrade from earlier versions of OpenDJ, however, the previous
global-acisettings are not updated. To apply the changes manually, change the relevantglobal-acisettings by using the dsconfig command. An example of how to change aglobal-aciproperty can be found in the Administration Guide, ACI: Disable Anonymous Access. -
-
For the SNMP Connection Handler, the default
security-agent-filehas changed toopendj-snmp.security(OPENDJ-982), and the upgrade process changes the file name. Thecommunityhas also changed toOpenDJ. If the SNMP Connection Handler fails to start after upgrade, use the dsconfig command to make sure that thesecurity-agent-fileproperty is correctly set for your installation.
