Updating Computer Group Policy by running the gpupdate command in the Windows 11 24H2 system results in an error. However, the update of the Computer Group Policy is successful.
In a DSfW and Active Directory cross-forest trust scenario, AD user login to the DSfW domain-joined client fails with the error message “Insufficient system resources exist to complete the requested service.”
The issue is due to Windows updates that use AES encryption for client authentication. The issue is present on the updated Windows 22 (version 21H2(20348.2655)) and Windows 25 (version 24H2(26100.1457)) servers.
To resolve this issue, you must change the encryption type to RC4 so that cross-forest users can log in to other domain-joined clients:
ksetup /setenctypeattr <domainname.com> -kvno 2 -t RC4-HMAC-MD5
Unified Management Console (UMC) configuration on DSfW Domain Controllers (FRD, ADC, or CDC) fail in Name-Mapped and Non-Name-mapped DSfW setup. UMC is unable to detect the existing UMC server in the same tree.
The Samba shares cannot be created in iManager because the NCP Server object fails to load during the process. However Samba shares can be created in the smb.conf file.
CIS pattern cannot be installed on Name-Mapped and Non-Name-Mapped DSfW servers.
On a Name-Mapped deployment, CIS is installed on the eDirectory server and DSfW is installed on a partitioned container. Dashboard is not able to fetch DSfW server details since CIS and DSfW are in different domains.
Workaround: DSfW domain DNS is added as a primary DNS in the eDirectory server where CIS is installed. With this change CIS resolves DSfW domain and started fetching DSFW server details.
Beginning with OES 2018 SP1, the DSfW domain controllers having OES 2018 SP1 or later and those having earlier OES versions cannot coexist in a forest. This is because of the functional incompatibility between the updated Kerberos version in OES 2018 SP1 and the Kerberos version in OES 2018 and earlier. All the DSfW servers in a forest must be on the same OES version and on the same patch level.
IMPORTANT:The following list is provided for your convenience. Do not consider the list as complete. Be sure to consult the documentation for your other OpenText products for information on interoperability issues with DSfW.
On an OES 2018 server with DSfW installed, the Endpoint Security Management utility fails on all DSfW server ports.
OpenText has no current plans to change this.