PK03541: SECURITY CACHE ENTRIES ARE CASE SENSITIVE WHEN LOOKING UP A RUN AS USER.

 Fixes are available

6.0.2.25: WebSphere Application Server V6.0.2 Fix Pack 25 for AIX platforms
6.0.2.27: WebSphere Application Server V6.0.2 Fix Pack 27 for HP-UX platforms
6.0.2.27: WebSphere Application Server V6.0.2 Fix Pack 27 for OS/400 platform
6.0.2.27: WebSphere Application Server V6.0.2 Fix Pack 27 for Solaris
6.0.2.27: WebSphere Application Server V6.0.2 Fix Pack 27 for Windows platforms
6.0.2.27: WebSphere Application Server V6.0.2 Fix Pack 27 for AIX platforms
6.0.2.25: WebSphere Application Server V6.0.2 Fix Pack 25 for HP-UX platforms
6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for HP-UX platforms
6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
6.0.2.3: WebSphere Application Server V6.0.2 Fix Pack 3 for AIX platforms
6.0.2.1: WebSphere Application Server V6.0.2 Fix Pack 1 for HP-UX platforms
6.0.2.29: WebSphere Application Server V6.0.2 Fix Pack 29 for AIX platforms
6.0.2.29: WebSphere Application Server V6.0.2 Fix Pack 29 for HP-UX platforms
6.0.2.29: WebSphere Application Server V6.0.2 Fix Pack 29 for Linux platforms
V6.0.2: Java SDK 1.4.2 SR11 Cumulative Fix for IBM WebSphere Application Server
6.0.2.29: WebSphere Application Server V6.0.2 Fix Pack 29 for Solaris
6.0.2.29: WebSphere Application Server V6.0.2 Fix Pack 29 for Windows platforms
6.0.2.27: WebSphere Application Server V6.0.2 Fix Pack 27 for Linux platforms
6.0.2.1: WebSphere Application Server V6.0.2 Fix Pack 1 for Linux platforms
6.0.2.3: WebSphere Application Server V6.0.2 Fix Pack 3 for Linux platforms
6.0.2.1: WebSphere Application Server V6.0.2 Fix Pack 1 for AIX platforms
6.0.2.1: WebSphere Application Server V6.0.2 Fix Pack 1 for Solaris platforms
6.0.2.1: WebSphere Application Server V6.0.2 Fix Pack 1 for Windows platforms
6.0.2.5: WebSphere Application Server V6.0.2 Fix Pack 5 for Solaris platforms
6.0.2.7: WebSphere Application Server V6.0.2 Fix Pack 7 for Solaris platforms
6.0.2.9: WebSphere Application Server V6.0.2 Fix Pack 9 for Windows platforms
6.0.2.7: WebSphere Application Server V6.0.2 Fix Pack 7 for AIX platforms
6.0.2.11: WebSphere Application Server V6.0.2 Fix Pack 11 for Solaris platforms
6.0.2.13: WebSphere Application Server V6.0.2 Fix Pack 13 for AIX platforms
6.0.2.13: WebSphere Application Server V6.0.2 Fix Pack 13 for HP-UX platforms
6.0.2.11: WebSphere Application Server V6.0.2 Fix Pack 11 for Windows platforms
6.0.2.11: WebSphere Application Server V6.0.2 Fix Pack 11 for HP-UX platforms
6.0.2.11: WebSphere Application Server V6.0.2 Fix Pack 11 for Linux platforms
6.0.2.13: WebSphere Application Server V6.0.2 Fix Pack 13 for Windows platforms
6.0.2.13: WebSphere Application Server V6.0.2 Fix Pack 13 for Linux platforms
6.0.2.15: WebSphere Application Server V6.0.2 Fix Pack 15 for OS/400
6.0.2.15: WebSphere Application Server V6.0.2 Fix Pack 15 for HP-UX
6.0.2.9: WebSphere Application Server V6.0.2 Fix Pack 9 for Solaris platforms
6.0.2.3: WebSphere Application Server V6.0.2 Fix Pack 3 for HP-UX platforms
6.0.2.3: WebSphere Application Server V6.0.2 Fix Pack 3 for Windows platforms
6.0.2.5: WebSphere Application Server V6.0.2 Fix Pack 5 for HP-UX platforms
6.0.2.5: WebSphere Application Server V6.0.2 Fix Pack 5 for AIX platforms
6.0.2.7: WebSphere Application Server V6.0.2 Fix Pack 7 for HP-UX platforms
6.0.2.7: WebSphere Application Server V6.0.2 Fix Pack 7 for Linux platforms
6.0.2.7: WebSphere Application Server V6.0.2 Fix Pack 7 for Windows platforms
6.0.2.9: WebSphere Application Server V6.0.2 Fix Pack 9 for AIX platforms
6.0.2.9: WebSphere Application Server V6.0.2 Fix Pack 9 for HP-UX platforms
6.0.2.9: WebSphere Application Server V6.0.2 Fix Pack 9 for Linux platforms
6.0.2.1: WebSphere Application Server V6.0.2 Fix Pack 1 for OS/400 platform
6.0.2.3: WebSphere Application Server V6.0.2 Fix Pack 3 for Solaris platforms
6.0.2.25: WebSphere Application Server V6.0.2 Fix Pack 25 for Linux platforms
6.0.2.25: WebSphere Application Server V6.0.2 Fix Pack 25 for Solaris
6.0.2.25: WebSphere Application Server V6.0.2 Fix Pack 25 for Windows platforms
6.0.2.15: WebSphere Application Server V6.0.2 Fix Pack 15 for AIX
6.0.2.15: WebSphere Application Server V6.0.2 Fix Pack 15 for Solaris
6.0.2.19: WebSphere Application Server V6.0.2 Fix Pack 19 for AIX platforms
6.0.2.17: WebSphere Application Server V6.0.2 Fix Pack 17 for OS/400 platform
6.0.2.17: WebSphere Application Server V6.0.2 Fix Pack 17 for Solaris
6.0.2.17: WebSphere Application Server V6.0.2 Fix Pack 17 for Windows platforms
6.0.2.17: WebSphere Application Server V6.0.2 Fix Pack 17 for HP-UX platforms
6.0.2.17: WebSphere Application Server V6.0.2 Fix Pack 17 for AIX platforms
6.0.2.5: WebSphere Application Server V6.0.2 Fix Pack 5 for Windows platforms
6.0.2.5: WebSphere Application Server V6.0.2 Fix Pack 5 for Linux platforms
6.0.2.11: WebSphere Application Server V6.0.2 Fix Pack 11 for AIX platforms
6.0.2.19: WebSphere Application Server V6.0.2 Fix Pack 19 for HP-UX platforms
6.0.2.19: WebSphere Application Server V6.0.2 Fix Pack 19 for Windows platforms
6.0.2.13: WebSphere Application Server V6.0.2 Fix Pack 13 for Solaris platform
6.0.2.19: WebSphere Application Server V6.0.2 Fix Pack 19 for OS/400 platform
6.0.2.21: WebSphere Application Server V6.0.2 Fix Pack 21 for HP-UX platforms
6.0.2.21: WebSphere Application Server V6.0.2 Fix Pack 21 for Linux platforms
6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for Windows platforms
6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for Solaris
6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for OS/400 platform
6.0.2.15: WebSphere Application Server V6.0.2 Fix Pack 15 for Windows
6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for Linux platforms
6.0.2.21: WebSphere Application Server V6.0.2 Fix Pack 21 for AIX platforms
6.0.2.21: WebSphere Application Server V6.0.2 Fix Pack 21 for Windows platforms
6.0.2.21: WebSphere Application Server V6.0.2 Fix Pack 21 for Solaris platforms
6.0.2.19: WebSphere Application Server V6.0.2 Fix Pack 19 for Solaris
6.0.2.17: WebSphere Application Server V6.0.2 Fix Pack 17 for Linux platforms
6.0.2.19: WebSphere Application Server V6.0.2 Fix Pack 19 for Linux platforms
6.0.2.31: WebSphere Application Server V6.0.2 Fix Pack 31 for AIX platforms
6.0.2.31: WebSphere Application Server V6.0.2 Fix Pack 31 for HP-UX platforms
6.0.2.31: WebSphere Application Server V6.0.2 Fix Pack 31 for OS/400 platform
6.0.2.31: WebSphere Application Server V6.0.2 Fix Pack 31 for Linux platforms
6.0.2.31: WebSphere Application Server V6.0.2 Fix Pack 31 for Solaris
6.0.2.31: WebSphere Application Server V6.0.2 Fix Pack 31 for Windows platforms
V6.0.2: Java SDK 1.4.2 SR11 Cumulative Fix for IBM WebSphere Application Server



APAR status
Closed as program error.

Error description
When authenticating a Run As user, the entry in the applications
web.xml is used to lookup the user in the security cache.  If
the username in the web.xml and security cache do not match in
case, the lookup fails to find the user and does a lookup to the
LDAP server.
Local fix
Security cache lookups should not be case sensitive.
Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server who have        *
*                 enabled global security.                     *
****************************************************************
* PROBLEM DESCRIPTION: The authentication cache is case        *
*                      sensitive.  This causes a cache miss    *
*                      if a new login uses a name which does   *
*                      not match the exact case of the name    *
*                      used in the previous login.             *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
Security authentication cache lookup is case sensitive.  The
cache lookup key is defined by the user registry.  If this
lookup key does not exactly match the name entered by the
user, a false cache miss will result.
Problem conclusion
The name entered by the user is now used as an additional
cache lookup key.

The fix for this APAR is currently targeted for inclusion in
fixpack 5.0.2.13 and 5.1.1.7. Please refer to the Recommended
Updates page for delivery dates:

http://www-1.ibm.com/support/docview.wss?rs=180&context=SSEQTP
&uid=swg27004980
Temporary fix
test fix provided
Comments
APAR information
APAR number PK03541
Reported component name WAS BASE 5.0
Reported component ID 5630A3600
Reported release 10W
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2005-04-01
Closed date 2005-08-02
Last modified date 2005-08-02

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
SECURITY          

Publications Referenced

Fix information
Fixed component name WAS BASE 5.0
Fixed component ID 5630A3600

Applicable component levels
R00A PSY    UP
R00H PSY    UP
R00I PSY    UP
R00P PSY    UP
R00S PSY    UP
R00W PSY    UP
R10A PSY    UP
R10H PSY    UP
R10I PSY    UP
R10P PSY    UP
R10S PSY    UP
R10W PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 10W
Software edition:
Reference #: PK03541
IBM Group: Software Group
Modified date: Aug 2, 2005