APAR status
Closed as program error.
Error description
After applying
PK25863 on top of 5.0.2.18 every second
jaas_login fails when the user changes its password and the
next login the Authcache value is still valid, the login fails
because new password and Authcache password do not match.
Same behaviour can be seen in 5.1.1.10 after applying
PK25607 to solve the SECJ0106E error.
Local fix
N/A
Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server version 5 *
* security users *
****************************************************************
* PROBLEM DESCRIPTION: CacheException may be thrown after *
* changing password. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Security Cache code throws CacheException when a user, who
changed the password, accesses a protected resource.
This problem only happens when Security Cache has a cache
entry which contains the user's old password.
The cause of this problem is that the Security Cache code tries
to clear the cache entry twice, if it detects the condition
that a user changed the password.
Problem conclusion
The failing module has been modified not to throw the
exception.
The fix for this APAR is currently targeted for inclusion in
fixpack 5.1.1.12. Please refer to the Recommended
Updates page for delivery dates:
http://www-1.ibm.com/support/docview.wss?uid=swg27004980
Temporary fix Comments
APAR information |
APAR number |
PK29595 |
Reported component name |
WEBSPHERE BASE |
Reported component ID |
5630A3600 |
Reported release |
10A |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2006-08-08 |
Closed date |
2006-08-16 |
Last modified date |
2006-08-16 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
|
Fix information |
Fixed component name |
WEBSPHERE BASE |
Fixed component ID |
5630A3600 |
Applicable component levels |
R00A PSN |
UP |
R00H PSN |
UP |
R00I PSN |
UP |
R00P PSN |
UP |
R00S PSN |
UP |
R00W PSN |
UP |
R10A PSY |
UP |
R10H PSY |
UP |
R10I PSY |
UP |
R10P PSY |
UP |
R10S PSY |
UP |
R10W PSY |
UP |
|