PQ53753: WAS SECURITY MAKING A REDUNDANT AUTHENTICATION CALL (VALIDATE)


APAR

APAR status
Closed as suggestion for future release.

Error description
WebSphere security performs MapCredentials immediately followed
by Validate when a user makes the first request. Both of these
calls end up authenticating the same user twice. In particular,
the call to getGroupsForUser takes several seconds on each of
the two occasions. If we could take away one of these
(seemingly redundant) calls (the one made during Validate),
this would significantly improve performance for the customer.
Local fix
Problem summary
Problem conclusion
Temporary fix
Comments
User authentication creates two credentials when ideally only
one should be created.  This can cause authentication
performance issues if LDAP response times are long.

The likely causes of the related performance issues are network
problems and LDAP tuning problems.  Prior to 3.5.5 APARsPQ48364, PQ52698 and PQ53935 are applicable as well.   These
are all contained in the cumulative fix for PQ53953 for 3.5.3,
3.5.4 and 3.5.5.
APAR information
APAR numberPQ53753
Reported component nameWAS ADVANCED SU
Reported component ID5648C8402
Reported release350
StatusCLOSED SUG
PENoPE
HIPERNoHIPER
Submitted date2001-10-19
Closed date2001-11-29
Last modified date2002-02-18

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:APAR is sysrouted FROM one or more of the following:


Modules/Macros

Fix information
APAR is sysrouted TO one or more of the following:Modules/Macros

Applicable component levels











Document Information

Product categories: Software, Application Servers, Distributed Application & Web Servers, WebSphere Application Server, General
Software version: 350
Reference #: PQ53753
IBM Group: Software Group
Modified date: 2002-02-18