Directory Sync 3.0.0
New Features and Changes
- With the end of Microsoft Corporation’s support for Windows Server 2008 R2 64-bit , it has been excluded from supported OSes for Directory Sync.
- The linkage function with Office 365 has been enhanced.
- Application-linking ID (downstream_id) has been added as an attribute of IIJ ID User.
- mS-DS-ConsistencyGuid has been added as an Active Directory attribute that can be set to external IDs of IIJ ID Users.
- mailNickName and proxyAddresses have been added as Active Directory attributes that can be set to notification email addresses of IIJ ID Users.
- Performance has been improved as a whole.
- Descriptions of the installer in English are now supported.
- A function for verifying the server certificate during use of LDAPS has been added.
- The File Structure has been changed.
- Executable files for outputting debug logs (normal_mode_output_log.bat and recovery_mode_output_log.bat) have been added.
- Some directories that are no longer necessary have been abolished.
- The operation when users/groups whose Active Directory attributes associated with userName or externalId are empty exist has been changed.
- Synchronous processing of users/groups whose attribute values are empty is skipped, but other users/groups are synchronized with IIJ IDs.
- For version 2.3.0 and earlier, if users/groups whose attribute values were empty existed, an error would occur and Directory Sync would terminate abnormally.
- The root CA certificate installed on the OS is now used to verify the server certificate used for communication with the IIJ ID Service.
- The root CA certificate that came with Directory Sync would be used for version 2.3.0 and earlier.
- Syntax check for configuration files (config.yml, secret.yml) in YAML format has become stricter.