PQ53673: CANNOT USE LOCAL OS FOR AUTHENTICATION MECHANISM WHEN RUNNING ASNON-ROOT USERID


APAR

APAR status
Closed as documentation error.

Error description
The information in the Websphere Application Server 3.5 and 4.0
InfoCenter section:
"6.6.a.1: Running the product servers and consoles as non-root"
does not
take into account the problem when running as non-root with
security enabled, as documented in
technote 1005677 "Executing as a non-root user on Unix
platforms".
InfoCenter section:"6.6.a.1: Running the product servers and consoles as non-root"does nottake into account the problem when running as non-root withsecurity enabled, as documented intechnote 1005677 "Executing as a non-root user on Unixplatforms".
Local fix
The InfoCenter needs to be updated to include this
information:
.
If Websphere Security is to be used when running the admin
server (or application servers)
as a non-root user, then the 'Local Operating System' cannot be
used as the
Authentication Mechanism. Instead, use Lightweight Third-Party
Authentication (LTPA) to a
Lightweight Directory Access Protocol (LDAP) directory.
information:.If Websphere Security is to be used when running the adminserver (or application servers)as a non-root user, then the 'Local Operating System' cannot beused as theAuthentication Mechanism. Instead, use Lightweight Third-PartyAuthentication (LTPA) to aLightweight Directory Access Protocol (LDAP) directory.
Problem summary
****************************************************************
* USERS AFFECTED: All Websphere Application Server Users       *
*                 running 3.5 or 4.0 product as a non-root     *
*                 user on UNIX systems.                        *
****************************************************************
* PROBLEM DESCRIPTION: The information in the Websphere        *
*                      Application Server 3.5 and 4.0          *
*                      InfoCenter section currently reads:     *
*                      "6.6.a.1: Running the product servers   *
*                      and consoles as non-root" does not      *
*                      take into account the problem when      *
*                      running as non-root with security       *
*                      enabled, as documented in technote      *
*                      1005677 "Executing as a non-root user   *
*                      on Unix platforms".                     *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
The information in the Websphere Application Server 3.5
and 4.0 InfoCenter section currently reads: "6.6.a.1: Running
the product servers and consoles as non-root" does not take
into account the problem when running as non-root with
security enabled, as documented in technote 1005677
"Executing as a non-root user on Unix platforms".
Problem conclusion
The InfoCenter needs to be updated to include this information:

If Websphere Security is to be used when running the admin
server (or application servers) as a non-root user, then the
'Local Operating System' cannot be used as the
Authentication Mechanism. Instead, use Lightweight
Third-Party Authentication (LTPA) to a
Lightweight Directory Access Protocol (LDAP) directory.
The InfoCenter needs to be updated to include this information:If Websphere Security is to be used when running the adminserver (or application servers) as a non-root user, then the'Local Operating System' cannot be used as theAuthentication Mechanism. Instead, use LightweightThird-Party Authentication (LTPA) to aLightweight Directory Access Protocol (LDAP) directory.
Temporary fix
Comments
APAR information
APAR numberPQ53673
Reported component nameWAS ADVANCED SU
Reported component ID5648C8402
Reported release350
StatusCLOSED DOC
PENoPE
HIPERNoHIPER
Submitted date2001-10-18
Closed date2001-10-30
Last modified date2002-01-16

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:APAR is sysrouted FROM one or more of the following:


Modules/Macros

Fix information
APAR is sysrouted TO one or more of the following:Modules/Macros

Applicable component levels











Document Information

Product categories: Software, Application Servers, Distributed Application & Web Servers, WebSphere Application Server, General
Software version: 350
Reference #: PQ53673
IBM Group: Software Group
Modified date: 2002-01-16