PQ45064: WASSECK SLOW EJB ACCESS WHEN ACCESSING WAS WITH SECURITY ENABLEDFROM A STANDALONE JAVA CLIENT


APAR

APAR status
Closed as program error.

Error description
WASSECK
Refer to PMR 36588,49R,000.
.
Environment:
   AIX 4.3.3
   WebSphere Application Server 3.5.1 Advanced
.
Description:Environment:AIX 4.3.3WebSphere Application Server 3.5.1 Advanced.
After modeling and cloning an app server with EJBs, enablng WAS security and accessing the EJB from a standalone Java client through a firewall results in slow EJB access. The developers have created an eFix for this.
Description:After modeling and cloning an app server with EJBs, enablngWAS security and accessing the EJB from a standalone Java clientthrough a firewall results in slow EJB access. The developershave created an eFix for this.
Local fix
Developers have created an eFix.
Problem summary
create an enterprise app with challenge type of none with
security turned on.  Associate bean clones with the EA
and set the default method group's auth to everyone.  This
does not work correctly with clones involved.
Symptoms included a substantial delay when aceessing the
bean and security log messages.
The root cause is that accessing the ModelHome object
requires SYSTEM level access.. and these errors occur
when a non-System user tries to access the protected
clones.
Problem conclusion
Workaround was to grant all users perm to enterprise apps
finder and creator methods, however some customers may not
find this security risk acceptable.
Code was dropped so that ModelHome now does not require
this to work correctly.
Temporary fix
Comments
APAR information
APAR numberPQ45064
Reported component nameAPACHE HTTP SVR
Reported component ID5648B7800
Reported release350
StatusCLOSED PER
PENoPE
HIPERNoHIPER
Submitted date2001-01-12
Closed date2001-01-19
Last modified date2001-02-12

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:APAR is sysrouted FROM one or more of the following:


Modules/Macros
SECURITY
APAR is sysrouted TO one or more of the following:Modules/Macros

Fix information
Fixed component nameWAS ADVANCED AI
Fixed component ID5648C8400

Applicable component levels
R350 PSYUP











Document Information

Product categories: Software, Application Servers, Distributed Application & Web Servers, WebSphere Application Server, General
Software version: 350
Reference #: PQ45064
IBM Group: Software Group
Modified date: 2001-02-12