APAR status
Closed as program error.
Error description
With WebSphere configured to use a custom LDAP registrythe
the following errors are showing up in the SystemOut.
LdapRegistryI E SECJ0362E: Cannot create credential for the user
LTPAServerObj E SECJ0369E:Authentication failed when using
LTPA. The exception is .
JaasLoginHelp A SECJ0222E: Anunexpected exception occurred when
trying to create a LoginContext. The LoginModule alias is
system.DEFAULT and the exception is.
SASRas E JSAS0240E:
[CredentialsImpl.get_mapped_credentials] Login failed. Verify
the userid/password is correct. Check the properties file to
ensure the login source is valid. If this error occurs on the
server, check the server properties to ensure the principalName
has a valid realm and userid. {1}
Local fix Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server security *
* users with custom LDAP user registry *
****************************************************************
* PROBLEM DESCRIPTION: LDAP search may fail if default *
* search filters are changed. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
When using LDAP registry, changing "Group Member ID Map" to
include "memberOf", LDAP search may fail for non Microsoft
Active Directory server.
Problem conclusion
This is an internal programming error which use "memberOf" as
a delimiter for LDAP type.
The fix for this APAR is currently targeted for inclusion in
fixpack 5.0.2.11 and 5.1.1.4. Please refer to the Recommended
Updates page for delivery dates:
http://www-1.ibm.com/support/docview.wss?rs=180&context=SSEQTP
&uid=swg27004980
Temporary fix
test fix provided
Comments
APAR information |
APAR number |
PK02309 |
Reported component name |
WAS NETWRK DEPL |
Reported component ID |
5630A3601 |
Reported release |
10H |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2005-03-10 |
Closed date |
2005-04-01 |
Last modified date |
2005-04-01 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
|
Fix information |
Fixed component name |
WAS NETWRK DEPL |
Fixed component ID |
5630A3601 |
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
R103 PSY |
UP |
R10A PSY |
UP |
R10H PSY |
UP |
R10I PSY |
UP |
R10P PSY |
UP |
R10S PSY |
UP |
R10W PSY |
UP |
|