From cb39d44cf56f51d6a14a6ba61f4b0662719aac8e Mon Sep 17 00:00:00 2001 From: Jeffrey Altman Date: Mon, 3 Oct 2005 03:29:45 +0000 Subject: [PATCH] windows-release-notes-take2-20051002 place the text in the correct section --- .../en_US/html/ReleaseNotes/relnotes.htm | 595 +++++++++--------- 1 file changed, 297 insertions(+), 298 deletions(-) diff --git a/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm b/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm index e3ffd1789..6842f1dd9 100644 --- a/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm +++ b/src/WINNT/doc/install/Documentation/en_US/html/ReleaseNotes/relnotes.htm @@ -36,11 +36,11 @@ xmlns="http://www.w3.org/TR/REC-html40"> Jeffrey Altman OpenAFS 1.4.0 Jeffrey Altman - 4 - 44 + 5 + 45 2005-09-26T23:55:00Z 2005-09-25T20:12:00Z - 2005-10-03T00:31:00Z + 2005-10-03T02:28:00Z 1 14557 82979 @@ -2430,7 +2430,7 @@ table.MsoTableGrid mso-bidi-language:#0400;} PAGEREF +_Toc115417114 \h 141. Installer Options +style='mso-element:field-end'>1. Installer Options

It can be installed either as a new installation or an upgrade from previous versions of OpenAFS for Windows or IBM AFS for @@ -2670,12 +2671,12 @@ style='mso-list:Ignore'>2.   using WiX and can be customized for organizations via the use of MSI Transforms (see MSI Deployment Guide)

-

2. System Requirements

+

2. System Requirements

-

2.1 Supported +

2.1 Supported Operating Systems

style='mso-spacerun:yes'>  The last version with support for Windows NT 4.0 is 1.2.10.

-

2.2 Disk Space

+

2.2 Disk Space

Up to 60mb required for the OpenAFS binaries plus 100MB for the default AFSCache file.   (The size of the AFSCache file may be adjusted via the Registry after installation.)

-

2.3 Additional +

2.3 Additional Software

MIT Kerberos for Windows 2.6.x if Kerberos 5 authentication support is desired.

-

3. Operational Notes

+

3. Operational Notes

-

3.1. Requirements +

3.1. Requirements for Kerberos 5 Authentication

The Kerberos 4 infrastructure on which the OpenAFS 1.2 @@ -2881,8 +2882,8 @@ style='mso-element:field-begin'> XE "krb524"

-

3.2. Use of the +

3.2. Use of the Microsoft Loopback Adapter

By itself the OpenAFS Client Service does not provide robust @@ -2896,10 +2897,10 @@ OpenAFS Client Service will not be affected by the configuration changes of other network adapters installed on the system. 

-

The MLA is installed with a name of "AFS" and a -pre-assigned IP address in the 10.x.x.x range.  -The MLA is bound to the “Client for Microsoft Networks” service and not -bound to the “File and Printer Sharing for Microsoft Networks”.The MLA is installed with a name of "AFS" and a pre-assigned +IP address in the 10.x.x.x range.  The +MLA is bound to the “Client for Microsoft Networks” service and not bound to +the “File and Printer Sharing for Microsoft Networks”.  If the MLA is unbound to "Client Microsoft Networks", the OpenAFS Client Service will become inaccessible when the machine is disconnected from the network.MACHINE-AFS".  One of the benefits of using the MLA is that the NETBIOS name does not have to be published on any adapter other than the MLA.  Therefore the chosen name is no -longer required to be unique.  Instead -the NETBIOS name associated with the AFS Client Service is simply -"AFS" and portable UNC paths of the form \\AFS\cellname\path can now -be used on all machines.

-

3.3. Using +

3.3. Using Freelance (Dynamic Root) Mode to Improve Mobility

-

Traditionally, when the OpenAFS Client Service starts it -must be able to access the "root.afs" volume of the default -cell.  The "root.afs" volume -contains the set of mount points to the "root.cell" volumes of -various cells the administrator of the default cell believes should be -accessible.  If the "root.afs" -volume is inaccessible when the client service is started, the service will -terminate unexpectedly.  Since many users -now use laptops or otherwise operate in disconnected environments in which a -VPN may be required to access the cell's servers, it is often the case that the +

Traditionally, when the OpenAFS Client Service starts it must +be able to access the "root.afs" volume of the default cell.  The "root.afs" volume contains the +set of mount points to the "root.cell" volumes of various cells the +administrator of the default cell believes should be accessible.  If the "root.afs" volume is +inaccessible when the client service is started, the service will terminate +unexpectedly.  Since many users now use +laptops or otherwise operate in disconnected environments in which a VPN may be +required to access the cell's servers, it is often the case that the "root.afs" volume for the default cell is not reachable and the OpenAFS Client Service will not successfully start.

To allow the OpenAFS Client Service to operate in these -environments, a fake "root.afs" volume is dynamically constructed -from mount points and symlinks stored in the local registry.  This method of operation is referred to as Freelance mode.

@@ -3053,8 +3054,8 @@ style='mso-spacerun:yes'> style='mso-element:field-end'> 

-

3.4. Locating AFS +

3.4. Locating AFS Volume Database Servers

The OpenAFS for Windows client will use DNS AFSDB records to @@ -3067,8 +3068,8 @@ style='mso-element:field-begin'> XE "afsdb"

-

3.5. Obtaining +

3.5. Obtaining AFS Tokens as a Part of Windows Logon

OpenAFS for Windows installs a WinLogon Network Provider to @@ -3095,8 +3096,8 @@ obtained during the process of generating AFS tokens are preserved and stored into the default ccache within the user logon session.

Integrated Logon does not have the ability to cache the -user's username and password for the purpose of obtaining tokens if the Kerberos -KDC is inaccessible at logon time.

+user's username and password for the purpose of obtaining tokens if the +Kerberos KDC is inaccessible at logon time.

Integrated Login supports the ability to obtain tokens for multiple cells.  For further information @@ -3106,8 +3107,8 @@ href="#_Appendix_A:_Registry_Values">Appendix A.

-

3.6. AFS System +

3.6. AFS System Tray Command Line Options

The AFS System Tray tool (afscreds.exe) supports several @@ -3141,20 +3142,20 @@ tokens dialog on startup

    -U = uninstall startup shortcut

-

    -X = test -and do map share

+

    -X = test and do map share

    -Z = unmap drives

autoinit will result in automated attempts to acquire AFS tokens when afscreds.exe is started.  -afscreds.exe will attempt to utilize tickets stored in the MSLSA credentials -cache; any existing CCAPI credentials cache; and finally display an Obtain -Tokens dialog to the user.  When used in -combination with IP address change detection, afscreds.exe will attempt to -acquire AFS tokens whenever the IP address list changes and the Kerberos KDC is -accessible.

+afscreds.exe will attempt to utilize tickets stored in the MSLSA +credentials cache; any existing CCAPI credentials cache; and finally display an +Obtain Tokens dialog to the user.  When +used in combination with IP address change detection, afscreds.exe will attempt +to acquire AFS tokens whenever the IP address list changes and the Kerberos KDC +is accessible.

The renew drive maps option is used to ensure that the user drive maps constructed via the OpenAFS tools (not NET USE) are re-constructed @@ -3171,8 +3172,8 @@ href="#_Appendix_A:_Registry_Values">Appendix A.

-

3.7. The “AFS +

3.7. The “AFS Client Admins” Authorization Group

The OpenAFS for Windows 1.4 client supports a local Windows @@ -3276,8 +3277,8 @@ style='mso-element:field-begin'> XE "fs.exe"

-

3.8. OpenAFS +

3.8. OpenAFS support for UNC paths

The OpenAFS 1.4 client supports UNC paths everywhere.  AFS paths can be entered in UNIX notation (e.g., /afs/openafs.org/software), space utilization reports the output of the volume status for the specified -path, and many AFS specific functions and variables have been added to the -command language.

+path, and many AFS specific functions and variables have been added to the command +language.

JPSoftware's web site is http://www.jpsoft.com.

-

3.9. OpenAFS +

3.9. OpenAFS includes aklog.exe

The OpenAFS 1.4 Client ships with its own version of @@ -3321,11 +3322,11 @@ tokens

Usage: aklog [-d] [[-cell | -c] cell [-k krb_realm]]

-

             [[-p -| -path] pathname]

-

             -[-noprdb] [-force]

+[[-p | -path] pathname]

+ +

             [-noprdb] [-force]

             [-5 [-m]| -4]

@@ -3355,8 +3356,8 @@ krb524d to convert Kerberos V tickets to Kerberos IV

-

3.10. OpenAFS +

3.10. OpenAFS Servers on Windows are Unsupported

The AFS Server functionality provided with OpenAFS 1.4 might @@ -3388,9 +3389,9 @@ MIT Kerberos for Windows should not be installed or must be disabled.

-

3.11. OpenAFS -Debugging Symbol files

+

3.11. OpenAFS Debugging +Symbol files

The OpenAFS for Windows installers now include Debugging Symbol files which should be installed if you are experiencing problems and @@ -3422,29 +3423,29 @@ additional debug statements were compiled into the binaries

-

3.12. Maximum +

3.12. Maximum File Size is 2GB

OpenAFS for Windows does not support files larger than 2GB.  The version of the SMB/CIFS protocol implemented imposes this limitation.  -Upgrading the SMB/CIFS implementation or replacing it with an Installable -File System will allow larger files to be supported.

-

3.13. Encrypted +

3.13. Encrypted AFS File Access

The OpenAFS for Windows installer by default activates a -weak form of encrypted data transfer between the AFS client and the AFS servers.  This is often referred to as +weak form of encrypted data transfer between the AFS client and the AFS +servers.  This is often referred to as "fcrypt" mode.

-

3.14. +

3.14. Authenticated Access to the OpenAFS Client Service

OpenAFS 1.4 supports authenticated SMB connections using @@ -3455,19 +3456,18 @@ another user's tokens on shared machines.

When GSS SPNEGO attempts a Kerberos 5 authentication, the -Windows SMB client will attempt to retrieve service tickets for -"cifs/afs@REALM" (if the loopback adapter is in use) or -"cifs/machine-afs@REALM" (if the loopback adapter is not being -used).  It is extremely important that -this service principal not exist in the KDC database as the Kerberos -authentication must fail allowing automatic fallback to NTLM.  When NTLM is used a special local -authentication mode will be used that does not require access to the user's -password.  Instead, Windows will -internally recognize the request as coming from a local logon session.

- -

3.15. No More INI +Windows SMB client will attempt to retrieve service tickets for "cifs/afs@REALM" +(if the loopback adapter is in use) or "cifs/machine-afs@REALM" (if +the loopback adapter is not being used).  +It is extremely important that this service principal not exist in the +KDC database as the Kerberos authentication must fail allowing automatic +fallback to NTLM.  When NTLM is used a +special local authentication mode will be used that does not require access to +the user's password.  Instead, Windows +will internally recognize the request as coming from a local logon session.

+ +

3.15. No More INI Files

Previous AFS clients for Windows stored configuration data @@ -3487,8 +3487,8 @@ file to the new CellServDB file. Windows registry.   OpenAFS 1.4 will not process the contents of the “afsddbmt.ini”.

-

3.16. Microsoft +

3.16. Microsoft Windows Internet Connection Firewall

The OpenAFS 1.4 Client is compatible with the Internet @@ -3499,9 +3499,9 @@ the AFS file server. appropriate Back Connection registry entries are added to allow SMB authentication to be performed across the Microsoft Loopback Adapter.

-

3.17. Browsing AFS -from the Explorer Shell and Office

+

3.17. Browsing +AFS from the Explorer Shell and Office

The OpenAFS 1.4 Client Service implements the CIFS Remote Admin Protocol which allows Explorer to browse server and share information. @@ -3525,26 +3525,26 @@ range locks. that files not be edited within AFS if they might be accessed by multiple users or multiple processes on a single machine.

-

3.19. Automatic +

3.19. Automatic Discarding of AFS Tokens at Logoff

OpenAFS 1.4 will automatically forget a user's tokens upon Logoff unless the user's profile was loaded from an AFS volume.  In this situation there is no mechanism to -determine when the profile has been successfully written back to the network.  It is therefore unsafe to release the user's -tokens.  Whether or not the profile has -been loaded from the registry can be determined for Local Accounts, Active -Directory accounts and NT4 accounts.

+determine when the profile has been successfully written back to the +network.  It is therefore unsafe to +release the user's tokens.  Whether or +not the profile has been loaded from the registry can be determined for Local +Accounts, Active Directory accounts and NT4 accounts.

If there is a need to disable this functionality, the LogoffPreserveTokens registry value can be used. (see Appendix A.)

-

3.20. Terminal +

3.20. Terminal Server installations

When installing the NSIS (.exe) installer under Terminal @@ -3553,8 +3553,8 @@ Panel. AFS not running properly.  The AFS Server should not be installed on a machine with Terminal Server installed.

-

3.21. Hidden Dot +

3.21. Hidden Dot Files

AFS is a UNIX native file system. automatically given the Hidden attribute so they will not normally be displayed.

-

3.22. Status +

3.22. Status Cache Limits

The Status Cache (AFS Configuration Control Panel: Advanced @@ -3584,8 +3584,8 @@ maximum number of Status Cache entries. Each entry requires approximately 1.2K.  In OpenAFS 1.4, the default number of Status Cache entries is 10,000.

-

3.23. NETBIOS +

3.23. NETBIOS over TCP/IP must be enabled

"Netbios over TCP/IP" must be active on the @@ -3594,8 +3594,8 @@ style='mso-spacerun:yes'> on the machine, then communication with the AFS Client Service will be impossible.

-

3.24. OpenAFS +

3.24. OpenAFS binaries are digitally signed

The OpenAFS Client Service and related binaries distributed @@ -3615,8 +3615,8 @@ documents the "VerifyServiceSi registry value which can be used to disable the signature check.  The file version check cannot be disabled.

-

3.25. Maximum +

3.25. Maximum Size of the AFSCache File

The maximum cache size is approximately 1.3GB. -

3.26. Filename +

3.26. Filename Character Sets

OpenAFS for Windows implements an SMB server which is used @@ -3826,8 +3826,8 @@ setting is not the default setting because making this change would prevent OpenAFS for Windows from being able to access filenames containing the above characters which were created without this setting.

-

3.27. Known +

3.27. Known Character Set Issues with Roaming Profiles

There is a known issue with storing Windows Roaming Profiles @@ -3839,8 +3839,8 @@ support UNICODE. some sites run logoff scripts (assigned by group policy) which rename all files to use only the supported characters for the locale.

-

3.28. The +

3.28. The AFSCache File

The AFS Cache file is stored by default at %TEMP%\AFSCache @@ -3858,8 +3858,8 @@ compressed and should consist of as few fragments as possible.   Significant performance gains can be achieved by defragmenting the AFSCache file with Sysinternal's Contig utility.

-

3.29. Restricting +

3.29. Restricting OpenAFS Client Service Start and Stop

A new command line tool, afsdacl.exe, can be used to @@ -3885,8 +3885,8 @@ afsdacl [-set | -reset] [-show]

          -show  : Show current DACL (SDSF)

-

3.30. The @sys +

3.30. The @sys Name List

The default @sys name list in OpenAFS 1.4 is set to @@ -3895,8 +3895,8 @@ style='mso-spacerun:yes'> "ia64_win64" and "amd64_win64" for amd 64-bit processors when those platforms are supported.

-

3.31. Symlinks to +

3.31. Symlinks to AFS UNC paths

In OpenAFS 1.4, symlinks to AFS UNC paths, \\AFS[\all]\..., @@ -3904,8 +3904,8 @@ are treated the same as symlinks to /afs/... However, please use /afs/... as the Windows UNC form will not work on UNIX.

-

3.32. Cache +

3.32. Cache Manager Debugging Now Supported

OpenAFS for Windows 1.4 implements the Cache Manager @@ -3928,8 +3928,8 @@ can be queried with cmdebug.exe.

-cache  print only cache configuration

-

3.33. Windows +

3.33. Windows Logon Caching vs. Kerberos Logons

If you are a site which utilizes MIT/Heimdal Kerberos @@ -3937,8 +3937,8 @@ principals to logon to Windows via a cross-realm relationship with a multi-domain Windows forest, you must enable Windows logon caching unless the workstation is Windows Vista Beta 1 or later.

-

3.34. Initial +

3.34. Initial Server Preferences

VLDB and File Server Preferences can now be provided initial @@ -3948,8 +3948,8 @@ useful for managed machines in a Windows domain which are centrally located href="#_Appendix_A:_Registry_Values">Appendix A for details on the "Server Preferences" keys.

-

3.35. File +

3.35. File Timestamps

OpenAFS 1.4 reports timestamps on files stored in AFS in UTC @@ -3974,8 +3974,8 @@ timestamp from the Windows explorer. During DST, these two times will no longer agree even though they are in fact representing the same moment in time.

-

3.36. Windows RPC +

3.36. Windows RPC client support must be installed

If the installer refuses to install and complains about an @@ -3994,8 +3994,8 @@ are present and that they refer to the dll "rpcrt4.dll":

   HKLM "SOFTWARE\Microsoft\RPC\ClientProtocols" "ncacn_http"

-

3.37. Generating +

3.37. Generating Minidumps of the OpenAFS Client Service

OpenAFS 1.4 adds a new command, "fs @@ -4005,8 +4005,8 @@ afsd_service.exe process. can be very helpful when debugging the AFS Client Service when it is unresponsive to SMB/CIFS requests.

-

3.38. AFS Client +

3.38. AFS Client Universally Unique Identifiers

The OpenAFS for Windows 1.4 client implements Universally @@ -4020,9 +4020,9 @@ style='mso-spacerun:yes'> client installed, the AFSCache files must be deleted as part of the cloning process.

-

4. How to Debug Problems +

4. How to Debug Problems with OpenAFS for Windows:

OpenAFS for Windows provides a wide range of tools to assist @@ -4030,12 +4030,12 @@ you in debugging problems. techniques available to you are varied because of the wide range of issues that have been discovered over the years.

-

4.1. pioctl debugging -(IoctlDebug +

4.1. pioctl +debugging (IoctlDebug registry key)

pioctl (path-based ioctl) calls are used by various tools to @@ -4124,8 +4124,8 @@ style='mso-spacerun:yes'> KnowledgeBase can be used as a reference to help you determine the configuration probem with your system.

-

4.2. afsd_service +

4.2. afsd_service initialization log (%WinDir%\TEMP\afsd_init.log)

Every time the AFS Client Service starts it appends data @@ -4145,11 +4145,11 @@ href="#_Value___:_MaxLogSize">MaxLogSize registry value determines the maximum size of the %WINDIR%\TEMP\afsd_init.log file.  If the file is larger than this value when OpenAFS Client Service starts, the file will be reset to 0 bytes.  If value is set to 0, the file will be allowed -to grow indefinitely.

+style='mso-spacerun:yes'>  If value is set to 0, the file will be +allowed to grow indefinitely.

-

4.3. afsd_service +

4.3. afsd_service debug logs (fs trace {-on, -off, -dump} ->%WinDir%\TEMP\afsd.log)

When attempting to debug the behavior of the SMB/CIFS Server @@ -4160,8 +4160,8 @@ style='mso-spacerun:yes'> any one time is 5000.  This can be adjusted with the registry value:

-

  [HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\Parameters]

+

  +[HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\Parameters]

  REG_DWORD  TraceBufferSize

@@ -4171,8 +4171,8 @@ value. to clear to the log and "fs trace -dump" to output the contents of the log to the file.

-

4.4. Using +

4.4. Using SysInternal’s DbgView and FileMon Tools

An alternatve option to the use of "fs trace @@ -4181,9 +4181,10 @@ such as Sysinternal's DbgView to capture real-time debugging output.  When the OpenAFS Client Service starts and Bit 2 of the TraceOption value in the registry is set, all trace log events are output using the Windows Debug -Monitor interface (OutputDebugString). 

+Monitor interface (OutputDebugString).  

-

  [HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\Parameters]

+

  +[HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\Parameters]

REG_DWORD   TraceOption = 0x04

@@ -4203,8 +4204,8 @@ and the resulting OpenAFS Client Service operations.   The captured data can be stored to files for inclusion in bug reports.

-

4.5. Microsoft +

4.5. Microsoft MiniDumps
(fs minidump -> %WinDir%\TEMP\afsd.dmp)

@@ -4215,8 +4216,8 @@ with access to the source code and a debugger. of a MiniDump file containing the state of all of the threads in the AFS Client Service process.

-

4.6. Single +

4.6. Single Sign-on (Integrated Logon) debugging

If you are having trouble with the Integrated Logon @@ -4234,8 +4235,8 @@ href="#_Value__:_TraceOption">TraceOption registry value:

Event Handlers to log information to the Windows Event Log: Application under the name “AFS Logon".

-

4.7. RX (AFS RPC) +

4.7. RX (AFS RPC) debugging (rxdebug)

The rxdebug.exe tool can be used to query a variety of @@ -4293,8 +4294,8 @@ connections

       -peers           show peers

-

4.8. Cache +

4.8. Cache Manager debugging (cmdebug)

The cmdebug.exe tool can be used to query the state of the @@ -4326,8 +4327,8 @@ interfaces

-cache      print only cache configuration

-

4.9. Persistent +

4.9. Persistent Cache consistency check

The persistent cache is stored in a Hidden System file at @@ -4338,9 +4339,9 @@ being able to start a validation check on the file can be performed.

  afsd_service.exe --validate-cache <cache-path>

-

5. Reporting Bugs:

+

5. Reporting Bugs:

Bug reports should be sent to openafs-bugs@openafs.org.

When reporting a error, please be sure to include the version of OpenAFS.

-

6. How to Contribute to +

6. How to Contribute to the Development of OpenAFS for Windows

Contributions to the development of OpenAFS for Windows are @@ -4459,8 +4460,8 @@ continuously needed. take many forms including cash donations, support contracts, donated developer time, and even donated tech writer time.

-

6.1. The USENIX +

6.1. The USENIX OpenAFS Fund

USENIX, a 501c3 @@ -4582,8 +4583,8 @@ mso-break-type:section-break'>

-

7.1. Introduction

+

7.1. Introduction

A MSI installer option is available for those who wish to use Windows Installer for installing OpenAFS and for organizations that wish to @@ -4687,8 +4688,8 @@ mso-list:l16 level1 lfo28;tab-stops:list 36.0pt'>2.    msitran -a openafs-transform.mst openafs-test.msi

-

and then checking the resulting openafs-test.msi to see if -all changes you have made above to openafs-modified.msi is present in +

and then checking the resulting openafs-test.msi to see if all +changes you have made above to openafs-modified.msi is present in openafs-test.msi.  'msitran' will complain if some modification in the transform can not be successfully applied.

@@ -4696,8 +4697,8 @@ complain if some modification in the transform can not be successfully applied.< the MSI databases directly when editing openafs-modified.msi.  More details are given below.

-

7.2. +

7.2. Configuration Options

The logic necessary to implement many of the settings @@ -4992,8 +4993,8 @@ including such options may not apply to future releases of OpenAFS.

style='mso-spacerun:yes'>    : '1' or '0'

Controls whether AFSCreds.exe starts up automatically when the user logs on.  - When CREDSSTARTUP is '1' a shortcut is added to the 'Startup' folder in - the 'Program menu' which starts AFSCREDS.EXE with the options that are + When CREDSSTARTUP is '1' a shortcut is added to the 'Startup' folder + in the 'Program menu' which starts AFSCREDS.EXE with the options that are determined by the other CREDS* properties.

@@ -5219,16 +5220,17 @@ the following :

-

Note that the ComponentId is an uppercase -GUID.  You can generate one using -GUIDGEN.EXE or UUIDGEN.EXE, both of which are included in the Platform SDK.

+

Note that the ComponentId is an +uppercase GUID.  You can generate one +using GUIDGEN.EXE or UUIDGEN.EXE, both of which are included in the Platform +SDK.

The Attributes value of 144 is a -sum of msidbComponentAttributesPermanent (16) and -msidbComponentAttributesNeverOverwrite (128).  -This ensures that local modifications are not overwritten or lost during -an installation or uninstallation.  These -are the same settings used on the default configuration files.

+sum of msidbComponentAttributesPermanent (16) and msidbComponentAttributesNeverOverwrite +(128).  This ensures that local +modifications are not overwritten or lost during an installation or +uninstallation.  These are the same +settings used on the default configuration files.

            'fil_my_CellServDB' is a key into the 'File' table which we will fill later.

@@ -5360,8 +5362,8 @@ a new row (Ctrl-R or 'Tables'->'Add Row') with the following values:

It is important to create the -new feature under the 'feaClient' feature, which will ensure that the -configuration file will be installed when the client binaries are installed.

+new feature under the 'feaClient' feature, which will ensure that the configuration +file will be installed when the client binaries are installed.

Setting 'Display' to 0 will hide this feature from the feature selection dialog during an interactive @@ -5524,12 +5526,11 @@ a new row with the following values:

                (leave other fields blank)

-

The 'Attributes' value is -msidbFileAttributesNonCompressed (8192).  -This is because we will be placing this file in the same directory as the -MSI instead of embedding the file in it.  -Transforms do not support updating compressed sources or adding new -cabinet streams.

+

The 'Attributes' value is msidbFileAttributesNonCompressed +(8192).  This is because we will be +placing this file in the same directory as the MSI instead of embedding the +file in it.  Transforms do not support +updating compressed sources or adding new cabinet streams.

Finally, the 'Sequence' value of 1000 will be used later to distinguish the file as being in a separate source @@ -5586,8 +5587,8 @@ a row with the following values :

                (leave other fields blank)

-

The sequence number of 1000 designates -this as the media source for the newly added file.

+

The sequence number of 1000 +designates this as the media source for the newly added file.

7.2.3.1 Components for Configuration Files

@@ -5608,8 +5609,8 @@ keys.

    Columns that are unspecified should be left empty.

-

    We create a new feature -and component to hold the new registry keys.

+

    We create a new +feature and component to hold the new registry keys.

@@ -5676,8 +5676,8 @@ and component to hold the new registry keys.

@@ -5702,7 +5702,8 @@ and component to hold the new registry keys.

            Root                : 2
            Key                 : 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain'
+ 2'>                 : + 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain'
            Name              : '*'
            Component             Root                : 2
            Key                 : - 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\ATHENA.MIT.EDU'
+ 2'>                 : 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\ATHENA.MIT.EDU'
            Name              : '*'
            Component             Root                : 2
            Key                 : 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\LOCALHOST'
+ 2'>                 : + 'SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider\Domain\LOCALHOST'
            Name              : 'FailLoginsSilently'
            Value +

The example adds domain specific keys for 'ATHENA.MIT.EDU' +(enable integrated logon) and 'LOCALHOST' (disable integrated logon and fail +logins silently).

7.2.5 Adding Site Specific Freelance Registry Keys

@@ -5991,9 +5992,9 @@ feature and component to hold the new registry keys.

athena.mit.edu cell's root.afs volume as well as a read-write mountpoint.  Aliases are also provided using symlinks.

-

7.3 Additional +

7.3 Additional Resources

If you want to add registry keys or files you need to create @@ -6038,8 +6039,8 @@ original MSI package is 'openafs-en_US.msi'.

See the Platform SDK documentation for information on command line options for MSITRAN.EXE.

-

7.4. Upgrades

+

7.4. Upgrades

The MSI package is designed to replace (or uninstall) previous versions of OpenAFS for Windows during installation.Appendix A: Registry Values -

A.1. Service +

A.1. Service parameters

The service parameters primarily affect the behavior of @@ -6301,8 +6302,8 @@ the AFS client service (afsd_service.exe).

Variable: cm_mountRoot

Name of root mount point.  In symlinks, if a path starts with - cm_mountRoot, it is assumed that the path is absolute (as opposed to relative) - and is adjusted accordingly. Eg: if a path is specified as + cm_mountRoot, it is assumed that the path is absolute (as opposed to + relative) and is adjusted accordingly. Eg: if a path is specified as /afs/athena.mit.edu/foo/bar/baz and cm_mountRoot is "/afs", then the path is interpreted as \\afs\all\athena.mit.edu\foo\bar\baz.  If a path does not start with with @@ -6649,13 +6650,13 @@ the AFS client service (afsd_service.exe).

Type: DWORD {0 .. MAXDWORD}
Default: 100K

This entry determines the maximum size of the - %WINDIR%\TEMP\afsd_init.log file.  If the - file is larger than this value when afsd_service.exe starts the file will be - reset to 0 bytes.  If this value is 0, - it means the file should be allowed to grow indefinitely.

+ %WINDIR%\TEMP\afsd_init.log file.  If + the file is larger than this value when afsd_service.exe starts the file will + be reset to 0 bytes.  If this value is + 0, it means the file should be allowed to grow indefinitely.

 - + + + + + + +
-

    'Component' - table:

+

    'Component' table:
-

    'Registry' table:

+

    'Registry' + table:
Value: FlushOnHibernate
@@ -6665,6 +6666,29 @@ the AFS client service (afsd_service.exe).

hibernate or stand-by.
+
Value: RxEnablePeerStats
+

Type: REG_DWORD
+ Default: 0x0

+

This value will enable the gathering of RX Statistics + for connections with the Cache Manager’s Peers.  This functionality can be adjusted at + runtime with the “fs rxstatpeer” command.

+
+
Value: RxEnableProcessStats
+

Type: REG_DWORD
+ Default: 0x0

+

This value will enable the gathering of RX Statistics + for the Cache Manager’s Process.  This + functionality can be adjusted at runtime with the “fs rxstatproc” command.

+

Regkey:
@@ -6700,9 +6724,9 @@ the AFS client service (afsd_service.exe).

CellServDBDir

Type: REG_SZ
Default: <not defined>

-

Specifies the directory - containing the CellServDB file.  When - this value is not specified, the AFS Client install directory is used.

+

Specifies the directory containing + the CellServDB file.  When this value + is not specified, the AFS Client install directory is used.

@@ -6770,7 +6794,7 @@ the AFS client service (afsd_service.exe).

MiniDumpWithCodeSegs = 0x00002000

- +

Type: REG_DWORD
Default: 0x0

This value can be used to force the AFS Client Service - to store filenames using the Windows system's ANSI character set instead of - the OEM Code Page character set which has traditionally been used by SMB file + to store filenames using the Windows system's ANSI character set instead of the + OEM Code Page character set which has traditionally been used by SMB file systems. 

Note: The use of ANSI characters will render access to files with 8-bit OEM file names unaccessible from Windows. UNIX systems and vice versa.

- - -
Value: RxEnablePeerStats
-

Type: REG_DWORD
- Default: 0x0

-

This value will enable the gathering of RX Statistics - for connections with the Cache Manager’s Peers.  This functionality can be adjusted at - runtime with the “fs rxstatpeer” command.

- - - - -
Value: RxEnableProcessStats
-

Type: REG_DWORD
- Default: 0x0

-

This value will enable the gathering of RX Statistics - for the Cache Manager’s Process.  This - functionality can be adjusted at runtime with the “fs rxstatproc” command.

- -

Regkey:
@@ -6964,9 +6965,9 @@ _Toc115416253'>Regkey:
ip address"

Type: REG_DWORD
Default: <none>

-

This key is used to specify a - default set of File server preferences. For each entry the value name will be - either the IP address of a server or a fully qualified domain name.This key is used to specify a default + set of File server preferences. For each entry the value name will be either + the IP address of a server or a fully qualified domain name.  The value will be the ranking.  The ranking will be adjusted by a random value between 0 and 256 prior to the preference being set.

@@ -6974,8 +6975,8 @@ _Toc115416253'>Regkey:
-

A.2. Integrated +

A.2. Integrated Logon Network provider parameters

Affects the network provider (afslogon.dll).

@@ -7115,7 +7116,8 @@ key. One per domain.)

Example:

-

 HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider

+

 HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider

  |

@@ -7154,17 +7156,15 @@ name"]
LogonOptions

Type: DWORD
Default: 0x01

-

NSIS/WiX: depends on user - configuration

+

NSIS/WiX: depends on user configuration

0x00 - Integrated Logon is not used
0x01 - Integrated Logon is used
0x02 - High Security Mode is used (deprecated)
0x03 - Integrated Logon with High Security Mode is used (deprecated)

-

High Security Mode generates - random SMB names for the creation of Drive Mappings.  This mode should not be used without - Integrated Logon.

+

High Security Mode generates random + SMB names for the creation of Drive Mappings.  + This mode should not be used without Integrated Logon.

As of 1.3.65 the SMB server supports SMB authentication.  The High Security Mode should not be used when using SMB authentication (SMBAuthType @@ -7249,8 +7249,7 @@ computer, the following keys will be looked up.

l15 level1 lfo36;tab-stops:list 36.0pt'>1.      -NP key. -("HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider")

+NP key. ("HKLM\SYSTEM\CurrentControlSet\Services\TransarcAFSDaemon\NetworkProvider")

  Please be aware of this when setting this value.

-

A.3. AFS +

A.3. AFS Credentials System Tray Tool parameters

Affects the behavior of afscreds.exe

@@ -7460,9 +7459,9 @@ Credentials System Tray Tool parameters

Type: DWORD {0, 1}
Default: <none>
Function: LoadRemind(), SaveRemind()

-

These values are used to save - and restore the state of the reminder flag for each cell for which the user - has obtained tokens.

+

These values are used to save and + restore the state of the reminder flag for each cell for which the user has + obtained tokens.

This value used to be stored at [HKLM\Software\TransarcCorporation\AFS Client\AfsCreds].

@@ -7508,14 +7507,14 @@ Credentials System Tray Tool parameters

Default: <none>

These values are used to store the AFS path in UNIX notation to which the drive letter is to be mapped.

-

These values used to be stored - in the afsdsbmt.ini file.

+

These values used to be stored in + the afsdsbmt.ini file.

-

A.4 OpenAFS +

A.4 OpenAFS Client Service Environment Variables