Table of Contents
The third minor release for Univention Corporate Server (UCS) 3 is now available in the form of Univention Corporate Server 3.3. An overview of the most important changes:
The Linux kernel has been updated to version 3.16. This includes several security updates as well as new and updated drivers for better hardware support.
Samba has been updated to version 4.3.7. Besides many detail improvements, Samba 4.3 provides support for SMB 3.1.1, which was introduced by Microsoft with Windows 10 and provides security improvements and more features.
Many system services have been updated such as the DHCP server, the Xen hypervisor or the SQL servers MySQL and PostgreSQL.
Several system libraries have been upgraded among others the GNU C library, OpenSSL or PHP5.
In environments with more than one UCS system, the update order of the UCS systems must be borne in mind:
The authoritative version of the LDAP directory service is maintained on the master domain controller and replicated on all the remaining LDAP servers of the UCS domain. As changes to the LDAP schemes can occur during release updates, the master domain controller must always be the first system to be updated during a release update.
It is generally advisable to update all UCS systems in one maintenance window whenever possible.
It must be checked whether sufficient disk space is available. A standard installation requires a minimum of 6 GB of disk space. Depending on the scope of the existing installation, the update will require at least another 1 GB of disk space for the downloading and installation of the packages.
For the update, a login should be performed on the system's local console as user root, and the update should be initiated there.
Alternatively, the update can be conducted using Univention Management Console.
Remote updating via SSH is not recommended as this may result in the update procedure being cancelled, e.g., if the network connection is interrupted.
In consequence, this can affect the system severely.
If updating should occur over a network connection nevertheless, it must be verified that the update continues despite disconnection from the network.
This can be done, e.g., using the tools screen and at. These tools are installed on all system roles by default.
It is possible to skip the upgrade to UCS 3.3. If the system should be upgraded directly from UCS 3.2 to UCS 4, the Univention Configuration Registry variable update33/skip/ucs3.3 has to be
set to true.
The maintained Java version in UCS 3.3 is OpenJDK 7. If OpenJDK 6 is installed, the upgrade process tries to replace
it with OpenJDK 7. If the automatic replacement fails, it has do be done manually.
The automatic migration can be skipped by setting the Univention Configuration Registry variable update33/skip/openjdk7 to true before the update.
PostgreSQL 9.1 is delivered with UCS 3.3. Security Updates for PostgreSQL 8.4 won't be provided with UCS 3.3. The migration from PostgreSQL 8.4 to PostgreSQL 9.1 should be done after the migration to UCS 3.3. See SDB 1292 for more details.
Following the update, new or updated join scripts need to be executed.
This can be done in two ways:
Either using the UMC module or by running the command univention-run-join-scripts as user root.
Subsequently the UCS system needs to be restarted.
The Linux kernel was updated to version 3.16.7-ckt25. 32 bit systems without PAE support (physical address extension) are no longer supported.
Anonymous usage statistics on the use of Univention Management Console are collected when using the free for personal use version of UCS (which is generally used for evaluating UCS). The modules opened are logged in an instance of the web traffic analysis tool Piwik. This makes it possible for Univention to tailor the development of Univention Management Console better to customer needs and carry out usability improvements.
This logging is only performed when the free-for-personal-use license is used. The license status can be verified by clicking on the cog symbol in the top right corner of the Univention Management Console and selecting . If Free for personal use edition is listed under , this version is in use. When a regular UCS license is used, no usage statistics are collected.
Independent of the license used, the statistics generation can be deactivated by setting the Univention Configuration Registry variable umc/web/piwik to false.
In addition to the standard installation DVD there is also a medium with support for the Unified Extensible Firmware Interface standard (UEFI) available for the amd64 architecture.
It must be used instead of the standard DVD on systems which only support a UEFI boot.
WebKit, Konqueror and QtWebKit are shipped in the maintained branch of the UCS repository, but not covered with security support. WebKit is primarily used for displaying HTML help pages etc. Firefox should be used as web browser.
Univention Management Console uses numerous JavaScript and CSS functions to display the web interface. Cookies need to be permitted in the browser. The following browsers are recommended:
Chrome as of version 14
Firefox as of version 10
Internet Explorer as of version 9
Safari (on the iPad 2)
Users with older browsers may experience display or performance problems.
Listed are the changes since UCS 3.2-8:
update33/skip/openjdk7 to
true (Bug 40692).