http://www-933.ibm.com/eserver/support/fixes/fixcentral
This CD or DVD contains programs provided by IBM and other program suppliers. Each program is licensed under the terms and conditions of that specific program. These terms and conditions can vary depending on the specific program or the program supplier. Specific information on the content of this CD or DVD and the terms and conditions under which these programs are licensed are contained in a readme file on Volume 1 of the media.
mount -v cdrfs -o ro /dev/cd0 /mnt
cp /mnt/README* /tmp
unmount /mnt
The /tmp/README and /tmp/README.html files contain the content or the terms and conditions under which these programs are licensed. View this information using your Web browser or the more or pg command.
Softcopy documentation for each product is included with the product. This document supplements the product documentation by outlining the steps for getting started and pointing you to additional product information.
These release notes are provided for AIX® Version 7.1 Expansion Pack.
The AIX Version 7.1 Expansion Pack is shipped with AIX Version 7.1 as a vehicle for delivering new IBM and non-IBM products. Most Expansion Pack products are installed using normal installation methods. Because some Expansion Pack products cannot be installed using normal installation methods, their installation procedures are provided under their product descriptions.
The AIX Version 7.1 Expansion Pack might include products that contain a cryptographic function that is subject to special export-licensing requirements by the U.S. Department of Commerce. Import restrictions can also apply to certain countries. Different packages of the AIX Version 7.1 Expansion Pack accommodate varying country export or import restrictions. Refer to “Ordering Information” located in the Expansion Pack announcement to determine which package is appropriate for you. Contact your IBM representative or IBM Business Partner to determine what encryption you are entitled to receive.
The contents of the Expansion Pack vary over time. New software products can be added, changed, or removed. Changes to the content of the AIX Version 7.1 Expansion Pack are announced either as part of an AIX announcement or independently of the release announcement.
Unless otherwise indicated, products can be installed from the CD or DVD using the Web-based System Manager or System Management Interface Tool (SMIT). For detailed instructions, see AIX Version 7.1 Installation and Migration, available through the System p and AIX Information Center.
You can list the available software products, packages, and file sets on AIX media, which can be a CD, DVD, tape, diskette, or directory. The output shows the available packages and file sets on the media. The descriptions are provided at the file set level.
You can perform a preview installation before doing the actual installation. A preview installation provides the pre-installation information that occurs during a regular installation, except that no software is installed.
When you select a package or file set to be installed with the preview installation process, you see a list that contains all the requisite packages and file sets needed by the selected package or file set to be successfully installed.
Other information generated during the preinstallation process concerns file system-size checking. The file systems are checked to ensure that there is enough free space available to install the selected package or file set.
You can list the software and use the previewing software functions from the command line, the SMIT interface, or the Web-based System Manager interface.
installp -ld/dev/cd0 | pg
fileset Name Level I/U Q Content
====================================================================
ICU4C.adt 2.8.0.0 I N usr
# ICU Application Developer's Toolkit
ICU4C.man.en_US 2.8.0.0 I N usr
# ICU Manual Pages - U.S. English
...
installp -aXgq -p -d/dev/cd0 ICU4C.adt
The
preview option shows the file sets selected to be installed, the file
sets that are pulled in by requisites, and the system resources that
are used.If the file set is preceded by a plus sign (+), then it is available to be installed. If the file set is preceded by an at sign (@), then the file set is already installed.
For example, in the following output example, the software product is ICU4C:
ICU4C.adt ALL
+ 2.8.0.0 ICU Application Developer's Toolkit
ICU4C.man.en_US ALL
+ 2.8.0.0 ICU Manual Pages - U.S. English
ICU4C.rte ALL
+ 2.8.0.0 International Components for Unicode
http://www-306.ibm.com/software/tivoli/resource-center/security/index.jsp
http://www.ibm.com/software/tivoli/products/directory-server/
You can use the Web Administration Tool on AIX 4.3.3, 5.1, or 5.2. You can install the Web Administration Tool on a system with or without the client or server.
smitty aio
This section provides information about installing the IBM HTTP Server (IHS) and its documentation.
The license restriction for IBM HTTP Server, Version 2.0.47.1 states that when it is used outside of the IBM WebSphere® Application Server (WAS), IHS can only be used in conjunction with AIX Web-based System Manager. AIX 5L™ Version 5.3 Expansion Pack customers do not receive fix support.
IBM HTTP Server, Version 2.0.47.1, is available in InstallShield installation format only. Previous versions of IHS for AIX were built using the installp format. To properly install the latest version, you must first remove the previous installation of IHS and then install the new version.
The instructions in the following section will guide you through this process.
Due to the license restrictions for IHS 2.0.47.1, the following installation instructions apply only to the use of IHS with the Web-based System Manager outside of a WebSphere Application Server environment:
./apachectl stop
http://www.ibm.com/software/webservers/httpservers/
To install IHS on AIX using the wsm_remote Software Bundle, manually complete the setup as follows:geninstall -d install_images_pathname J:IHS2
Using
the example above, the command is as follows:geninstall -d /usr/sys/inst.images J:IHS2
lslpp -L IHS2
The
results show that IHS2 is installed in the /usr/HTTPServer directory.
The postinstallation script completes the remote management environment
configuration and starts the HTTP Server. Documents and files are
served from the /usr/HTTPServer/htdocs directory.chmod o-w /usr/HTTPServer/conf/httpd.conf.sample.apfa
The terms and conditions, notices and other information are provided in a license file located in the /usr/HTTPServer/license directory. Any non-English version of the information in this file is provided to you for your convenience only. The English version of the file is the official version. The license agreement for this product refers you to this file, or to a file referenced by this file, for details concerning terms and conditions applicable to third-party software code included in this product, and for certain notices and other information that IBM must provide to you under its license to certain software code.
IBM HTTP SERVER AND THE APACHE HTTP SERVER: The IBM HTTP Server component of the Program includes software developed by The Apache Group for use in the Apache HTTP Server project (http://www.apache.org/). Portions of the IBM HTTP Server are based on software developed by The Apache Group. The software developed by The Apache Group is Copyright (c) 2000-2002. All rights reserved.
OPENSSL: The IBM HTTP Server component of the Program includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/) and software developed by Eric Young (eay@cryptsoft.com). The copyright notices, lists of conditions and disclaimers related to OpenSSL can be found in the readme.txt file located in the icc subdirectory of the SSL component.
Open Secure Shell (OpenSSH) requires Open Secure Sockets Layer (OpenSSL) Version 0.9.8.4 for encryption. The OpenSSL package is available as installp in the AIX Version 7.1 Expansion Pack. The package name is Openssl-0.9.8.4, and it can be installed using SMIT. You must use the OpenSSL Version 0.9.8.8 before installing OpenSSH.
After OpenSSH is installed, you can find the readme file in the /usr/openssh/ directory.
This version of OpenSSH supports PAM authentication on AIX 7.1. You can find the details in the readme file in the /usr/openssh/ directory.
OpenSSH 4.3 and later versions use Kerberos 5 authentication and authorization through the Network Authentication Service (NAS), Version 1.4.0.7. You must migrate from previous versions of NAS (Kerberos) Version 1.4.0.5 before updating OpenSSH.
IBM Text-to-Speech (TTS) is a speech engine that allows applications to produce speech.
TTS is installed in the /usr/opt/ibmtts directory.
For more information, see the /usr/opt/ibmtts/docs/readme.htm file or the /usr/opt/ibmtts/docs/readme.txt file.
IBM Network Authentication Service, Version 1.4.0.7 for AIX is a network-authentication protocol based on the IETF RFC 1510 standards protocol for the Kerberos V5 IBM Network Authentication Service. The IBM Network Authentication Service includes the Generic Security Service Application Programming Interface (GSS-API), the Key Distribution Center (KDC) server, and the server. IBM Network Authentication Service allows AIX middleware and external application writers to use authenticated and optionally encrypted message flow between their respective components.
The README.lang file for AIX is located in the /usr/lpp/krb5 directory after the krb5.client.rte file set is installed from the krb5.client client installation package. The README.lang file can also be viewed using the SMIT list_media_info command to list supplemental file set information on the installation media for the krb5.client.rte file set.
The documentation is in both HTML and PDF formats. Install the krb5.doc.lang.html file set for access to HTML documents and the krb5.doc.lang.pdf file set for access to PDF documents.
/usr/lpp/krb5/doc/html/lang/ADMINGD
/usr/lpp/krb5/doc/pdf/lang/ADMINGD
/usr/lpp/krb5/doc/html/lang/APDEVREF
/usr/lpp/krb5/doc/pdf/lang/APDEVREF
The IBM Network Authentication Service Version 1.4 Administrator's and User's Guide details the installation and configuration procedures for the product.
The GSKit.README file for AIX Certificate and SSL Base Runtime (GSKIT), Version 7.0 is located in the root directory of the AIX Version 7.1 Expansion Pack CD or DVD, Volume 2.
With the DES encryption kernel extension, nfs_kdes_full.ext, you can now use 64-bit kernels. This extension is used to enable Secure NFS by encrypting time stamps sent between the client and the server that allow each remote procedure call (RPC) message to be authenticated. For more information, see the "Network File Systems Security" section in the AIX Version 7.1 Security Guide topic collection.
The DES encryption kernel extension is available from the des file set on the AIX Expansion Pack.
Certificate Authentication Services are not included with the AIX Version 7.1 operating system.
ftp://ftp.porcupine.org/pub/security/index.html
Documentation for Pegasus CIM Server and OS Base Providers is available in the Common Information Model Guide.
After installation, the Pegasus CIM Server readme file is located in the /opt/freeware/cimom/pegasus/README directory.
The OS Base Providers readme file is located in the /usr/pegasus/provider/README directory.
The SMI_S Providers readme file is located in the /usr/pegasus/provider/README_SMIS directory.
The Pegasus CIM Server is delivered with SSL ready. Therefore, it requires the libssl.a library to be available on the system before you can start the Pegasus CIM Server. The libssl.a library is a part of the OpenSSL rpm, which is available on the AIX Toolbox for Linux Applications CD or DVD. It can also be downloaded from the AIX Toolbox for Linux Applications website at:
http://www.ibm.com/servers/aix/products/aixos/linux/download.html
The package name is openssl-0.9.7XXX.aix5.1.ppc.rpm, where XXX indicates the build level. Install OpenSSL before starting the Pegasus CIM Server.For more information about the OpenSSL rpm and Pegasus CIM Server, see the readme file in the /opt/freeware/cimom/pegasus directory after you install the Pegasus CIM Server.
The AIX Network Data Administration Facility (AIX NDAF) for AIX Version 7.1 has been moved from the Expansion Pack media to the base media.
The Remote Client Security support in the Web-based System Manager Security sysmgt.websm.security and sysmgt.websm.security-us file sets has been enhanced for recent versions of the Linux operating systems. This enhancement corrects a problem where the Remote Client Security package, setupsecl.exe, fails to install on SLES 9 and other recent Linux releases because the version of InstallShield that was used to build the package (IEMP) is not supported on these releases. The Remote Client Security is repackaged using IEMP 5.02 to alleviate this problem.
The CIM resource manager (CIM RM) is an RMC resource manager that enables RMC to be used to query system configuration through CIM classes. CIM RM is contained in the package rsct.exp.
For more information about the CIM Resource Manager, see the IBM Reliable Scalable Cluster Technology Administration Guide. After installation, the CIM RM README is found in /usr/sbin/rsct/README/rsct.exp.README.