Release Notes for LDAP Server

Compatibility & Installation

1. LDAP Server 2.4.59-2815 requires DSM 7.2 and above.

Fixed Issues

1. Fixed a security vulnerability regarding OpenLDAP (CVE-2022-29155).
2. Minor bug fixes.

Compatibility & Installation

1. LDAP Server 2.4.59 requires DSM 7.1 or versions above.

What's New

1. Updated to OpenLDAP 2.4.59.
2. Added support for audit logging.
3. Added support for displaying user passwords in notification mails after users are imported.
4. Added support for searching user description, user email, and group description.
5. Added support for backing up Consumer servers via Hyper Backup.

Fixed Issues

1. Minor bug fixes.

Important Note

1. The update is expected to be available in all regions within the next few days. The actual time of release may vary slightly depending on the region.

Fixed Issues

1. Fixed an issue where LDAP users could not be displayed in Outlook's contact list.
2. Fixed an issue where the package might not work normally.

Compatibility and Installation

1. Updated to be compatible with DSM 7.0.

What's New

1. Updated OpenLDAP to version 2.4.57.
2. Allows LDAP users to change their passwords on Synology NAS clients in the same LDAP directory.
3. Enhanced the password policy:
   • Passwords must exclude usernames and description.
   • Passwords must include upper-case letters, lower-case letters, and numeric digits.
   • The minimum length of passwords is 8 characters.

Important Note

1. This update is expected to be available in all regions within the next few days. The actual time of release may vary slightly depending on regions.
2. LDAP Server 2.4.49-2515 requires DSM 6.2.4 or above.

Compatibility & Installation

1. The "admin" account is disabled by default in the newly installed LDAP Server.

What's New

1. Updated OpenLDAP to version 2.4.56.
2. Enhanced default password policies:
   • Exclude usernames and description.
   • Include upper-case letters, lower-case letters, and numerical digits.
   • Use more than eight characters.
3. Added support for requiring all users to change passwords if any password policy is changed.
4. Added support for uninterrupted data reading during a database backup.
5. Fixed security vulnerabilities (Synology-SA-21:07).

Fixed Issues

1. Fixed the issue where the "admin" account did not belong to the "users" group.
2. Minor bug fixes.

Important Note

1. LDAP Server 2.4.40-2505 requires DSM 6.2.3 or above.

What's New

1. Added support for sorting names on the Manage Users/Manage Groups pages.
2. Enhanced the compatibility of import user lists and provides clearer error messages when imported files contain syntactic errors.
3. Added support for the option of sending notification emails to newly added users.

Fixed Issues

1. Fixed the issue where links for resetting passwords in emails might be incorrect after customized DSM ports are set up.
2. Fixed a security vulnerability regarding OpenLDAP (CVE-2019-13057).

Important Note

1. This package is now renamed to LDAP Server. The original database and configuration will keep working after the update.

Fixed Issues

1. Fixed the issue where the account expiration date and the user's birthday could not be set up properly.

1. Optimized Directory Server's backup and restore processes.
2. Aligned display date and time formats with DSM.
3. Minor bug fixes.

Minor bug fixes.

Thai user interface is now available.

1. Expanded the supportable number of accounts to 20,000.
2. Enhanced password strength by disallowing common passwords.
3. Minor bug fixes.

Fixed a security vulnerability regarding DSM login page (CVE-2017-9554).

1. Fixed an issue where databases might be damaged during the upgrade process of Directory Server.
2. Minor bug fixes.

1. Supports to reset LDAP user's password via email.
2. Minor bug fixes.

1. Supports nested groups to provide better management methods.

Fixed an issue where backup rotation might not work properly if the folder path of the backup destination contains spaces.

1. The Provider-Consumer architecture in Directory Server allows the account data to be continuously replicated from a "Provider" Synology NAS to one or more “Consumer” servers. This ensures that the connection between the clients and the server will not be affected even when the Provider server is unavailable.
2. Password strength policy can now be applied to user accounts for better security.
3. You can enforce regular and periodical password update to enhance security. In addition, password expiration reminders will automatically notify users to update their passwords via email or upon login.
4. Disabled SSLv2 and SSLv3 prootocol for enhanced security.

This is the initial release to add support for DS216play.

1. Updated to accommodate the Google API change when using Directory Server as the backend authentication server for Google Apps.

1. Upgraded to be compatible with DSM 6.0 Beta.

1. Upgraded to be compatible with DSM 5.2.

1. Certified by Synology Trust Level.

Improvements

1. Upgraded OpenLDAP to version 2.4.39 to address multiple security vulnerabilities (CVE-2009-3767, CVE-2010-0211, CVE-2010-0212, CVE-2011-1024, CVE-2011-1025, CVE-2011-1081, CVE-2011-4079, CVE-2012-1164, CVE-2012-2668).
2. Added member of overlay feature.

1. Updated to be compatible with DSM 5.0.

1. Google Apps Single Sign-On support lets Directory Server become an identity provider for your Google Apps domain, allowing users to log into Google Apps services (such as Gmail or Google Calendar) using their accounts and passwords stored on Directory Server.

1. This update contains stability improvements and bug fixes.

1. Fixed an issue where you may not run Directory Server due to database errors.