Laserfiche Directory Server 10.3.1 Hotfix

April 10, 2020 | KB: 1014145
Directory Server 10.3.1

Summary

This article details the list of changes for Laserfiche Directory Server 10.3.1 Hotfix.

  • When setting credentials for querying Active Directory (AD) or LDAP directories, the credentials are no longer audited.
  • When a Laserfiche user's password is reset or changed, the user can no longer use the original password to sign in.
  • Large Laserfiche Directory Server instances (tens of thousands of users) are able to migrate users from one group to another without unintended users losing group membership.

The update includes the following files:

  • LFDS.exe (Version 10.3.1.165)
  • LMAdminWeb.dll (Version 10.3.1.165)

Resolution

Click the following link to download a ZIP file containing the hotfix.

KB1014145.zip

  1. Stop the Laserfiche Directory Server service (LicenseManagerWCF). Make sure that the LFDS.exe process has stopped.
  2. Backup the existing LFDS.exe and LMAdminWeb.dll and replace them with the ones in KB1014145.zip. By default, the location of LFDS.exe is C:\Program Files\Laserfiche\Directory Server\LFDS.exe and LMAdminWeb.dll is C:\Program Files\Laserfiche\Directory Server\Web\LFDS\bin\LMAdminWeb.dll.
  3. Start the Laserfiche Directory Server service.

Additional Information

After installing the hotfix:

  • If the IdentityProviderEvent logs are not needed then navigate to the AuditLog folder and search for IdentityProviderEvent. Delete all the log files and empty the recycling bin.
  • If the IdentityProviderEvent logs are needed then use the log sanitization script in Knowledge Base article 1014135 to scrub the IdentityProviderEvent logs of any sensitive data.