PK51361: RACF CBIND PROFILES FOR THE CHANNEL FRAMEWORK NEEDS TO BE ADDED TO WEBSPHERE APPLICATION SERVER V6.1

 Fixes are available

6.1.0.15 WebSphere Application Server V6.1 Fix Pack 15 for i5/OS
6.1.0.15 WebSphere Application Server V6.1 Fix Pack 15 for AIX
6.1.0.15: WebSphere Application Server V6.1 Fix Pack 15 for HP-UX
6.1.0.15: WebSphere Application Server V6.1 Fix Pack 15 for Windows
6.1.0.17 WebSphere Application Server V6.1 Fix Pack 17 for i5/OS
6.1.0.17: WebSphere Application Server V6.1 Fix Pack 17 for Linux
6.1.0.17: WebSphere Application Server V6.1 Fix Pack 17 for Solaris
6.1.0.17: WebSphere Application Server V6.1 Fix Pack 17 for HP-UX
6.1.0.17: WebSphere Application Server V6.1 Fix Pack 17 for Windows
6.1.0.17 WebSphere Application Server V6.1 Fix Pack 17 for AIX
6.1.0.15: WebSphere Application Server V6.1 Fix Pack 15 for Linux
6.1.0.15: WebSphere Application Server V6.1 Fix Pack 15 for Solaris
6.1.0.19 WebSphere Application Server V6.1 Fix Pack 19 for AIX
6.1.0.19: WebSphere Application Server V6.1 Fix Pack 19 for HP-UX
6.1.0.19 WebSphere Application Server V6.1 Fix Pack 19 for i5/OS
6.1.0.19: WebSphere Application Server V6.1 Fix Pack 19 for Linux
6.1.0.19: WebSphere Application Server V6.1 Fix Pack 19 for Solaris
6.1.0.19: WebSphere Application Server V6.1 Fix Pack 19 for Windows
Java SDK 1.5 SR8 Cumulative Fix for WebSphere Application Server



APAR status
Closed as program error.

Error description
WebSphere Application Server v6.1 does not currently support
RACF CBIND profiles for channel framework.  This APAR will add
this support.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V6.1 for z/OS                                *
****************************************************************
* PROBLEM DESCRIPTION: For an HTTPS request and client         *
*                      certificate authentication, the server  *
*                      does not perform the CBIND profile      *
*                      check when the following property has   *
*                      been set for  the server,               *
*                      protocol_https_mutual_auth_cbind_check. *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
For an HTTPS request, the Channel Framework support does not
perform the CBIND profile checking that was done in previous
releases for WebSphere Application Server for z/OS.
Problem conclusion
The code was modified to honor the property,
protocol_https_mutual_auth_cbind_check, that allows the CBIND
profile checking to be performed for an HTTPS request with
client certificate authentication.

APAR PK51361 is currently targeted for inclusion in Service
Level (Fix Pack) 6.1.0.14 of WebSphere Application Server V6.1
for z/OS.
Temporary fix Comments
APAR information
APAR number PK51361
Reported component name WEBSPHERE FOR Z
Reported component ID 5655I3500
Reported release 610
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention YesSpecatt / CST
Submitted date 2007-08-21
Closed date 2007-11-27
Last modified date 2008-02-08

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:
UK32747

Modules/Macros

Publications Referenced

Fix information
Fixed component name WEBSPHERE FOR Z
Fixed component ID 5655I3500

Applicable component levels
R500 PSN    UP
R601 PSN    UP
R610 PSY UK32747    UP08/01/24 P F801

  Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.


Document Information


Current web document: swg1PK51361.html
Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 610
Software edition:
Reference #: PK51361
IBM Group: Software Group
Modified date: Feb 8, 2008