APAR status
Closed as program error.
Error description
Customer description:
We are running Websphere 5.0.1 ND on AIX 5.1. All appservers
are clustered and global security is turned on.
When we add a J2C JAAS authentication alias it breaks
synchronization.
Adding the alias updates the security.xml file, which is not
being automatically synchronized. If we manually copy the
security.xml file out to all nodes and then issue a sync
command synchronization is restored. Should this be
automatically managed by Websphere?
Local fix
Setting LDAP configuration to "ignore case" avoids the problem.
Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server users who have *
* enabled security. *
****************************************************************
* PROBLEM DESCRIPTION: Authorization may fail while *
* performing configuration *
* synchronization in network deployment *
* enviornment. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Configuration synchronization fails with the following message:
"SECJ0321E: Role based authorization is caller in role
failed for security name ..".
The cause was Basic Authorization credentials were
incorrectly used to perform authorization during
synchronization.
Problem conclusion
Synchronization will now only use LTPA credentials.
Temporary fix
tested internally
Comments
APAR information |
APAR number |
PQ76432 |
Reported component name |
WAS NETWRK DEPL |
Reported component ID |
5630A3601 |
Reported release |
00A |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2003-07-16 |
Closed date |
2003-07-30 |
Last modified date |
2003-07-30 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
|