Luna SA 4.4.3 - Secure Support - SafeNet
Luna SA 4.4.3 - Secure Support - SafeNet
Luna SA 4.4.3 - Secure Support - SafeNet
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Issue<br />
(76475) <strong>Support</strong> for<br />
Windows 2008 Server<br />
core?<br />
(76398)<br />
<strong>Luna</strong>KeyAgreementDh:<br />
Unsupported<br />
generateSecret method<br />
with Java 5<br />
(71997) [docs]<br />
User role list in docs<br />
needs to be updated for<br />
new commands<br />
(71024) Can't list public<br />
keys for created users<br />
(69852) Error when<br />
attempting to start NTLS<br />
with no key/cert<br />
generated<br />
Priority Synopsis<br />
M<br />
L<br />
L<br />
L<br />
L<br />
Problem: Found a problem running the ksputil on Windows 2008 core. This is a<br />
GUI tool; windows core has no GUI.<br />
Workaround: A workaround is to copy "oledlg.dll" from Windows 2008 Server onto<br />
the Server Core version. The dll file is provided on the CD in:<br />
\windows\64\CNG\safenet<br />
Problem: <strong>Luna</strong> <strong>SA</strong> 4.4.1 does not support a raw shared secret for Diffie-Hellman<br />
key agreement<br />
Workaround: N/A<br />
Problem: The user role list (user_accounts_and_privileges.htm) needs to be<br />
updated for the new commands included with <strong>Luna</strong> <strong>SA</strong> 4.4 (token pcmvisibility,<br />
syslog remotehost, etc.).<br />
Workaround: N/A<br />
Problem: lunash:>sysconf setAdmin publickey list User must be admin, monitor or<br />
operator<br />
Command Result : 65535 (<strong>Luna</strong> Shell execution)<br />
Functionality is otherwise OK!<br />
Workaround: N/A<br />
Problem: NOTICE: The NTLS service must be restarted for new settings to take<br />
effect. If you are sure that you wish to restart NTLS, then type 'proceed', otherwise ty<br />
pe 'quit'<br />
> proceed<br />
Proceeding...<br />
Restarting NTLS service...<br />
Stopping ntls:<br />
[ OK ] Error opening Certificate<br />
/usr/lunasa/vts/server/server.pem 30136:error:02001002:system library:fopen:No<br />
such file or directory:bss_file.c:2 78:fopen('/usr/lunasa/vts/server/server.pem','r')<br />
30136:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:280: unable to<br />
load certificate<br />
Workaround: ALWAYS generate the server certificate BEFORE attempting to start<br />
NTLS.<br />
<strong>Luna</strong> <strong>SA</strong> <strong>4.4.3</strong> Customer Release Notes 007-011327-001 Revision E Copyright 2009-2012 <strong>SafeNet</strong> Inc. 10