Security error ico0064e
 Technote (FAQ)
 
Problem
I have created a service proxy to interact with a back-end EIS system, using J2C connectors. I have also developed a session bean, which uses this service proxy for EIS interaction. This application works fine on the WebSphere® server. However, when I turn on server security, defined credential information in the server configuration, I notice that if I define the Resource Authentication as Container, the application fails with security error, ico0064e. However, if the Resource Authentication is defined as Application, the application works fine. Why?

Note: When you view a Resource Authentication field in the deployment descriptor, it will be listed as "res-auth".
 
Cause
The key to understanding the cause of the failure is that the created service proxy makes a connection to EIS in a programmatic way. In other words, it is the proxy (the application) that manages this connection. In J2EE™ terms, this connection is called component-managed connection. The other type of connection J2EE defines is container-managed connection.

J2EE Connector Architecture (JCA) Specification V1.0 states that:
The application component provider uses a deployment descriptor element, for example  res-auth for EJB components, to indicate the requirements for one of the above two approaches. If the res-auth element is set to Application, the component code performs a programmatic sign-on to the EIS; if the res-auth element is Container, the Application Server takes the responsibility of setting and managing EIS sign-on.
 
Solution
In the scenario that uses a component-managed connection, the Resource Authentication res-auth needs to be set to Application so that the application performs the authentication, and not the container on the server.
 
 
Cross Reference information
Segment Product Component Platform Version Edition
Application Servers WebSphere Application Server Java 2 Connectivity (J2C) AIX, HPUX, iSeries, Linux, Linux Red Hat - i/p Series, Linux zSeries, Multi-Platform, OS/390, Solaris, Windows, Windows 2000, Windows NT, Windows Server 2003, Windows XP, z/OS 5.0, 5.0.0, 5.0.1, 5.0.2, 5.0.2.1, 5.0.2.2, 5.0.2.3, 5.0.2.4, 5.0.2.5, 5.0.2.6, 5.0.3, 5.0.x, 5.1, 5.1.0, 5.1.0.1, 5.1.0.2, 5.1.0.3, 5.1.0.4, 5.1.0.5, 5.1.1, 5.1.x, 5.x Edition Independent
 
 


Document Information


Product categories: Software > Business Integration > Other Business Integration > WebSphere Studio Application Developer Integration Edition > Enterprise Services
Operating system(s): Windows
Software version: 5.1
Software edition:
Reference #: 1176829
IBM Group: Software Group
Modified date: Aug 12, 2004