PQ90786: User with "MONITOR" authority cannot see data when using Tivoli Performance Viewer (TPV)

 A fix is available

Obtain the fix for this APAR



APAR status
Closed as program error.

Error description
When using role-based authenication, TPV will not display data
when a user only has "MONITOR" authority.  TPV should only
require "MONITOR" authority.

Currently, a user with "MONITOR" authority can connect with TPV,
but no data is displayed.
Local fix
Give the user "ADMINISTRATOR" authority
Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V5.0 for z/OS                                *
****************************************************************
* PROBLEM DESCRIPTION: Tivoli Performance Viewer will not      *
*                      display data when used by a user with   *
*                      only 'MONITOR' authority.               *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
When using role-based authorization, Tivoli Performance Viewer
or other PMI data viewer won't be able to display any data when
used by someone with only 'MONITOR' authority.
There is an error message in server's(dmgr or base appserver)
servant region like:
ICH408I USER(WSADMIN ) GROUP(CBCFG1  ) NAME(WAS ADMINISTRATOR )
administrator CL(EJBROLE )  INSUFFICIENT ACCESS AUTHORITY
ACCESS INTENT(READ   )  ACCESS ALLOWED(NONE   )
BBOO0222I SECJ0305I: Role based authorization check failed for
security name WASRACFREALM/WSADMIN,
accessId user:WASRACFREALM/WSADMIN
while invoking method getStatsArray:
.Lcom.ibm.ws.pmi.server.DataDescriptor;
:java.lang.Boolean on resource Perf and module Perf.
Problem conclusion
Code was added to allow 'MONITOR' access to the PMI data.

APAR PQ90786 is associated with SERVICE LEVEL W502013 of
WebSphere Application Server V5.0 for z/OS.
Temporary fix Comments
APAR information
APAR number PQ90786
Reported component name WEBSPHERE FOR Z
Reported component ID 5655I3500
Reported release 500
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2004-06-29
Closed date 2004-07-20
Last modified date 2004-08-11

APAR is sysrouted FROM one or more of the following:
PQ88857

APAR is sysrouted TO one or more of the following:
PQ92727

Modules/Macros
BBOUBINF          

Publications Referenced

Fix information
Fixed component name WEBSPHERE FOR Z
Fixed component ID 5655I3500

Applicable component levels
R500 PSY UQ90831    UP04/07/27 P F407

  Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.


Document Information


Current web document: swg1PQ90786.html
Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ90786
IBM Group: Software Group
Modified date: Aug 11, 2004