Client for Open Enterprise Server 2 SP4 (IR10)

abstract

This is interim release (IR10) of Client for Open Enterprise Server 2 SP4 (formerly "Novell Client 2 SP4 for Windows"). It includes fixes for problems found after Client for Open Enterprise Server 2 SP4 was released. It also includes support for Microsoft Windows Server 2016. This is a full client package, not just a subset of files.

Current Readme file is here.

History of fixes is in TID 7016351.

details

System Requirements:

Client for Open Enterprise Server 2 SP4 (IR10) is appropriate only for the platforms listed below. This client will not run on Windows Vista, Windows Server 2008, or earlier Windows platforms.

Client for Open Enterprise Server 2 SP4 (IR10) is supported on the following platforms:

Windows Server 2016
Windows 10 (x86 or x64)
Windows Server 2012 R2 (x64)
Windows Server 2012 (x64)
Windows 8.1 (x86 or x64) excluding Windows 8.1 RT
Windows 8 (x86 or x64) excluding Windows 8 RT
Windows Server 2008 R2 SP1 (x64)
Windows Server 2008 R2 (x64)
Windows 7 SP1 (x86 or x64)
Windows 7 (x86 or x64)
(Ultimate Edition, Enterprise Edition, Professional Edition, or Education Edition)

Installation:

Execute "Client_for_Open_Enterprise_Server_2_SP4_IR10.exe" and unzip the files, then continue with the installation as prompted. Finally, click on the "Restart Now" button to complete the process. Before restarting, save any open files and close all programs.

Windows 10 Creators Upgrade Issue:

The Windows 10 Creators Update ("1703" or March 2017 release of Windows 10) has introduced a Windows upgrade issue that causes a loss of all Client for Open Enterprise Server configuration settings during the Windows upgrade process.  For more information on this issue, please see TID 7018786. Note: When using Windows 10 "Fall Creators Update" ("1709" or October 2017 release of Windows 10), this loss of Client for Open Enterprise Server settings no longer occurs during the Windows 10 upgrade process.

Windows 10 Installation Note:

Either before or after installing Client for Open Enterprise Server 2 SP4 (IR10) on Windows 10, ensure that you are running the released version of Windows 10, and that Windows Update is allowed to deliver the current updates from Microsoft for the Windows 10 platform.  There are Windows 10 behaviors relevant to Client for OES operation which were not addressed until the released version of Windows 10, or in some cases not until the August 2015 updates Microsoft delivers to Windows 10 platforms.  Ensuring that the August 2015 or later updates for Windows 10 are installed will help ensure the correct Client for OES experience.

Windows 7 Installation Notes:

1. Client for Open Enterprise Server is signed with an SHA-2 certificate and will fail to install on Windows 7 and Windows Server 2008 R2 if the Microsoft Security Update KB3033929 has not been installed. See TID 7017718, "Error: "Unsupported Operating System" when installing Client for OES 2 SP4 (IR3).

2. The “Always trust software from Micro Focus” checkbox on the Microsoft Publisher Verification prompt may not work when installing on Windows 7 and Windows Server 2008 R2. To correct this problem, apply Microsoft HotFix KB2921916 on Windows 7 and Windows Server 2008 R2 platforms. See TID 7017719, "The “Always trust software from Micro Focus” checkbox on the Microsoft Publisher Verification prompt does not work"

For a complete history of fixes for Client for Open Enterprise Server 2 for Windows, see TID 7016351.

This interim release fixes the following issues seen with the Client for Open Enterprise Server 2 SP4:

New fixes included in the Client for Open Enterprise Server 2 SP4 (IR10):

1. eDirectory password change could fail against eDirectory 9 replicas after upgrading to Client for Open Enterprise Server 2 SP4 (IR9). See TID 7023235. (Bug 1101666)
2. Remote Desktop Connection could fail on Windows 10 1803 due to a new SetSerialization call. See TID 7023188. (Bug 1101432)
3. Provide an option to suppress the workstation reboot when uninstalling via command line. See TID 7023330. (Bug 1005418)

1. Attempting to change attributes on the root directory of a volume would fail.  (Bug 1099672)
2. XTSVCMGR service process could crash when a high number of SLP multicast query responses were received. (Bug 1093576)
3. Correction to the Inherited Rights Filter behavior to reflect that Supervisor trustee right cannot be blocked. (Bug 1091511)
4. Copying small files could encounter 0.5-second delay if "File Caching" is set to "Read and Write" and "Lazy Close" is "Off". (Bug 1090412)
5. "Delayed write failed" error could be displayed when browsing directories if "File Caching" is set to "Read and Write". (Bug 1088920)
6. Updated from NICI 2.7.x and NMAS 8.x to now deliver NICI 3.x and NMAS 9.x client components. (Bug 1080497)
7. Compression attributes could not be set on individual files, and were available even when volume does not support compression. (Bug 901410)
8. A file with the Read Only attribute set could not be deleted in some cases. (Bug 1090544)

Note: If NMAS support is installed using the Client for Open Enterprise Server 2 SP4 (IR9) or later, the Microsoft Visual C++ Redistributable for Visual Studio 2012 will be installed in addition to the Microsoft Visual C++ Redistributable for Visual Studio 2010.  This additional component is a required dependency of the NMAS 9.x client software.

1. Resolved potential security vulnerability ZDI-CAN-547. See TID 7022983. (Bug 1093607)

Previous fixes included in the Client for Open Enterprise Server 2 SP4 (IR8):

1. Supervisors could not manage the Supervisor file system trustee in rights management. (Bug 1079805)
2. Network Provider Order issues and error message after Windows 10 1709 (RS3) upgrade. See TID 7022598. (Bug 1077482)
3. File handle to memory mapped executable may remain open when certain third-party software is present. See TID 7022710. (Bug 1074862)
4. File time stamps may not be preserved when copying files with File Caching set to "Read and Write". See TID 7022803. (Bug 1074290)
5. eDirectory login scripts and drive connections unavailable after logon when certain third-party software is present. See TID 7022243. (Bug 1065113)

Previous fixes included in the Client for Open Enterprise Server 2 SP4 (IR7a):

1. An issue existed where setting "Read and Write" for the "File Caching" parameter in Client Properties might not result in write caching actually becoming enabled.
2. The Client for Open Enterprise Server was re-tested against the now-released Windows 10 1709 "Fall Creators Update".

1. Windows Automatic Restart Sign On (ARSO) prevents eDirectory login script execution. See TID 7021904. (Bug 1058159)
2. Slow performance copying large files from OES server. See TID 7021903. (Bug 1056823)
3. Possible blue screen when editing eDirectory login script with File Caching enabled. See TID 7021902. (Bug 1056672)
4. Login may hang when CTRL-ALT-DEL is required and a Legal Notice is displayed. See TID 7021907. (Bug 1049745)
5. Client for OES 2 SP4 (IR5) and (IR6) fail to save file if NCP Erase permission is not granted. (Bug 1030741)
6. Provide better French translation for "OES Login" and "OES Connections" menu optiProns. (Bug 1013742)
7. Provide "UNCPathFilterBehavior" workaround for servers with OES 2015 SP1 and later CIFS. See TID 7021906. (Bug 1003945)

New features included in the Client for Open Enterprise Server 2 SP4 (IR7):

1 File Caching now offers "Read and Write" setting in Client Properties, to improve performance of applications that issue small writes. See TID 7022029.
2. Added Purge & Salvage support for 64-bit ZID file entries available through NCP on Open Enterprise Server 2018.
3. Windows Server 2016 is now declared as a supported platform.

Previous fixes included in the Client for Open Enterprise Server 2 SP4 (IR6):

1. Potential data corruption when a file is truncated at a non-zero offset. (Bug 1015861)
2. Change Password failure when NESCM is set as default NMAS method in eDirectory. (Bug 994517)
3. Oplock Break request could fail to process when NCP server has multiple IP addresses. (Bug 979767)
4. Provide "LogRecordLockTimeout" registry policy for NCP-level lock timeout. See TID 7018764. (Bug 766757)
5. Added integration with Advanced Authentication 5.5 Windows Client. See TID 7018762. 

Previous fixes included in the Client for Open Enterprise Server 2 SP4 (IR5):

1. eDirectory AutoAdminLogon could fail on Windows 10 platforms. (Bug 1006564)
2. Potential crash if Inherited Rights or Purge Subdirectories is invoked for a long path. (Bug 1005071)
3. Applications may create temporary files that cannot be immediately deleted. See TID 7018086. (Bug 998876)
4. Windows 10 upgrade can cause "802.1x Authentication" to stop working. (Bug 997645)
5. Volume handle metadata could potentially become corrupt when File Caching is enabled. (Bug 994805)
6. When unlocking a workstation, the input focus might not be set on the password field. (Bug 993534)
7. File deletion could potentially fail without errors reported when File Caching is enabled. (Bug 992542)
8. Applications requesting FileInternalInformation or FileAllInformation could fail unexpectedly. (Bug 991759)
9. Applications requesting DELETE permission could potentially succeed even when NCP-level ERASE permission is not granted. (Bug 989502)
10. An otherwise successful interactive user logon could stop and re-prompt user for credentials on Windows 10 platforms. See TID 7017966. (Bug 979572)
11. Password change options could still be shown for a Windows account associated to a Microsoft Account (LiveID). (Bug 977709)
12. Configuration of "DefaultLocationProfile" still being used in some cases instead of "DefaultLoginProfile". (Bug 966288)
13. eDirectory AutoAdminQueryNDS could fail on Windows 10 platforms. See TID 7017628. (Bug 963491)
14. Potential crash in NCCACHE.SYS when opening login scripts or other eDirectory stream attributes. (Bug 920986)
15. Added support for credential provider wrappers that do not handle IConnectableCredentialProviderCredential. (Bug 720076)

Previous fixes included in the Client for Open Enterprise Server 2 SP4 (IR4):

1. Applications may not see a truncated file as 0 bytes in length when File Caching is enabled. (Bug 994451)
2. Unused portions of the application's read buffer could be written to when reading sizes greater than 64KB. See TID 7017908. (Bug 991544)
3. Applications enumerating folders with a large number of files or subdirectories may omit some entries. See TID 7017895.  (Bug 990529)
4. Updated the Micro Focus logo mark and images to reflect updated corporate branding.(Bug 989796)
5. Provided customization for system tray and shell extension icon using INSTALL.INI. See TID 7018057. (Bug 989780)
6. Windows 10 Build 10240 (July 2015 TH1) or Build 14393 (July 2016 RS1) Secure Boot configurations fail to boot. See TID 7017838. (Bug 988795)
7. After reboot, the system default login script may run instead of the eDirectory login script during the first login. See TID 7017864. (Bug 988283)
8. Potential handle leak on the XTSVCMGR.EXE process can cause a workstation hang. (Bug 988227)
9. Potential "NMAS.DLL is missing from the computer" error after enabling Password Expiry Warning feature. See TID 7017831. (Bug 988206)
10. Show Advanced Options dialog may incorrectly appear after a wrong password is entered. (Bug 986661)
11. Truncated purge and salvage message dialogs may appear after installing IR3. See TID 7017777. (Bug 986412)
12. Possible "You require permission from S-1-1-0 to make changes to this folder" error when deleting files. (Bug 985738)
13. STATUS_DELETE_PENDING might not be returned when deletion has already been successfully requested. (Bug 985566)
14. Pre-Windows 10-compatible versions of iPrint can cause eDirectory login scripts to not execute or crash. See TID 7016915. (Bug 985221)
15. Potential kernel memory leak when information is requested about a file or directory that does not exist. See TID 7017783. (Bug 979345)
16. Possible kernel-mode bugcheck in NDS4.SYS when eDirectory background authentication returns -669. (Bug 973840)
17. State of the "Change your Windows password to match your network password" checkbox can become out of sync. (Bug 972037)
18. After successful deletion is reported by an application, the file or folder may actually still exist. (Bug 968482)
19. Changing the username in the "Login Profile Administration" dialog does not refresh the available profiles. (Bug 963129)
20. Potential crash in XTSVCMGR.EXE when handling multicast or lengthy unicast responses. See TID 7017867. (Bug 842633)

Previous fixes included in the Client for Open Enterprise Server 2 SP4 (IR3):

1. Re-branded "Novell Client for Windows" by Novell to "Client for Open Enterprise Server" by Microfocus. (Bug 972327)
2. Sending a broadcast message to multiple users would potentially crash while showing the results window. (Bug 918222)
3. Using an equal "=" sign or other delimiters in the username field could cause login to fail. (Bug 905616)
4. Unused portions of the application's read buffer could still be written to when reading less than 64KB. (Bug 956734)
5. Directory space restriction drop-down selection of KB/MB/GB/TB is not always visible in Windows 10. (Bug 977217)
6. On 64-bit versions of Windows, 64-bit NICI is always being installed even when not selected for installation. (Bug 979875)
7. On 64-bit versions of Windows, a 32-bit application accessing a DFS-involved path or eDirectory-based UNC can potentially blue screen. (Bug 960769)
8. When other products wrap our Credential Provider (such as ZENworks FDE), the "Novell Logon" could be shown even when set to "Off". (Bug 963238)
9. Possible deadlock when handling an NCP oplock break notification while an application operation for the same file is in progress. (Bug 968514)
10. "Sharing violation" and "insufficient rights" conditions were not always correctly handled in file Delete and File Caching scenarios. (Bug 966923)
11. Cryptic error messages could be shown when a password change failed to meet complexity requirements. (Bug 968494)
12. The login profile field and drop-down list can be empty after applying the Windows 10 KB3147458 update. (Bug 975344)
13. Login scripts may fail to run when another network provider (such as non-Windows 10-compatible versions of iPrint) crashes. (Bug 950183)
14. Messages related to password expiration were not correctly worded in French. (Bug 954638)
15. NCIMAN may fail to read or write all settings depending on which Windows user is running NCIMAN. (Bug 875991)
16. Ampersand "&" character in eDirectory object names could fail to display properly in system tray menu and shell extension displays. (Bug 861787)
17. Added optional support for synchronizing the Windows and eDirectory passwords during "Login with non-Novell Credential Provider". (Bug 934385)
18. "Computer Only Logon If Not Connected" presented unexpected eDirectory logon when Windows failed to identify the connected network. (Bug 947790)

Previous fixes included in the Novell Client 2 SP4 for Windows (IR2):

1. "Novell Password Administration" menu now shows Universal Password policy instead of only eDirectory policy. (Bug 954310)
2. "Administrator's Message" as part of Universal Password policy display now uses more room to display when necessary. See TID 7017014. (Bug 954305)
3. Potential delay during MAP commands due to applications not processing the WM_DEVICECHANGE notification. (Bug 953384)
4. Ensure Novell Client installation displays "unsupported operating system" warning for Windows Server 2016 technical previews. (Bug 952864)
5. Added optional client-side work-around for OES NCP 87,72 issue if server-side fix cannot be applied. See TID 7016978. (Bug 950726)
6. Novell Client credential provider may comes up showing "Error Recovery Mode" after Windows upgrade. (Bug 948251)
7. Failure to load custom credential provider bitmap could prevent successful login. (Bug 942037)
8. NWParsePath API could return error 0x8866 due to buffer validation. (Bug 939468)
9. Application could hang due to byte range lock request returning STATUS_CANCELLED after lock is denied by server. (Bug 934597)
10. Unable to set "last access time" or "last modification time" on a directory using Windows APIs. (Bug 913127)
11. Using an equal "=" sign or other delimiters in the username field could cause login to fail. (Bug 905616)
12. Login dialog that appears in response to UNC path access could hang before being displayed. See TID 7015828. (Bug 901052)
13. Some NCP connections would not be marked as unauthenticated, leading to failed file system access attempts. (Bug 893161)
14. Setting "Last Logged On User" to "Off" did not hide logged-on users during "Switch User". (Bug 836473)
15. Windows logon can hang for VDI-based login when UNC Path Filter is enabled. See TID 7012982. (Bug 821037)
16. Improve "Computer Only Logon if Not Connected" behavior when user mis-types password. (Bug 813556)
17. Attempting to Remote Control a Windows terminal session failed when UNC Path Filter is enabled. (Bug 803319)
18. Password change attempt can incorrectly measure password length when Unicode characters are present. (Bug 738038).

Previous fixes included in the Novell Client 2 SP4 for Windows (IR1):

1. Application can hang when a DFS junction target is to a folder that the current user does not have sufficient permissions to access. (Bug 940022)
2. Using the "Context:" field drop-down history selection during login could fail to override the use of "<DHCP>" in that field. (Bug 939137)
3. Whenever data has been manually entered into a DHCP-enabled field on the login dialog, DHCP will become diabled for that field if the login attempt is successful. (Bug 938947)
4. Invoking "Uninstall" for Novell Client from the new Windows 10 "Settings" apps list could fail, even though legacy Add/Remove Programs control panel still works. (Bug 937927)
5. "Novell DFS Junction Information" tab does not show in the Windows Explorer properties if DFS junction target is a folder rather than volume root. (Bug 937160)
6. Registeration of Novell Client shell extensions could fail during installation on Windows 10. (Bug 936791)
7. Installation of a network client on Windows 10 may not automatically add the new network provider to the Windows network provider order. (Bug 936329)
8. Windows 10 no longer presents the "Connecting..." status page during credential provider logon. (Bug 936328)
9. Potential deadlock when concurrent NET USE / WNetAddConnection operations were being performed. (Bug 934436)
10. Desktop task bar may become unresponsive when using a Windows Explorer tool bar shortcut to a Novell Client-based network location. (Bug 932854)
11. If the crypto key container becomes corrupt for any reason, NCCredProvider initialization fails and never recovers. (Bug 930481)
12. Potential kernel-mode bugcheck due to deferred special kernel mode APCs when co-existing with additional filter drivers. (Bug 928227)
13. Potential deadlock in NCP oplock break processing which allows a workstation to become unresponsive to future oplock break notifications. (Bug 924017)
14. IP Address Costing can now be enabled in Novell Client Properties ("IP Address Costing" under the "Advanced Settings" tab) to provide TCP-based costing. Subnet matching and ICMP Echo-based costing are not yet implemented. (Bug 615005)