APAR status
Closed as program error.
Error description
IBM certpath builder requires a X509 V3 certificate. The test
certificate provided by Verisign uses the X509 V1 certificate,
which fails when used with WS-Security in WebSphere.
Local fix
Create a self-signed certificate or use a valid X509 V3 signed
certificate.
Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server users using *
* Web Service security. *
****************************************************************
* PROBLEM DESCRIPTION: Certpath build fails if root *
* Certificate Authority (CA) has an X509 *
* V1 certificate. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Digital signature verification fails due to certpath build
failure if CA has an X590 V1 certificate.
Problem conclusion
X590 V1 are now accepted for root CA certificate.
Temporary fix
Fix test provided.
Comments
APAR information |
APAR number |
PQ81007 |
Reported component name |
WAS NETWRK DEPL |
Reported component ID |
5630A3601 |
Reported release |
00W |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2003-11-17 |
Closed date |
2003-12-18 |
Last modified date |
2003-12-18 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
R103 PSY |
UP |
R10A PSY |
UP |
R10H PSY |
UP |
R10I PSY |
UP |
R10P PSY |
UP |
R10S PSY |
UP |
R10W PSY |
UP |
|