PQ52815: AFTER PQ58003 SSL ENABLED PLUGIN HAS A LIMITATION ON SOLARIS WITH THE IPLANET WEBSERVER | |||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description Websphere Application Server V4.0.1 Advanced Edition iPlanet webserver V4.1 SP7 on Solaris 8 Customer scenario: They have above environment. Webserver and AppServer are to be on separate machines and communication channel has to be SSL encrypted as required by the security standards. iPlanet is a webserver standard for customer and cannot be changed to an other web server. Websphere V4 AE System Handbook (SG246176 - redbook): We were unable to test any scenarios within this test environment that required SSL support by the iPlanet webserve plugin. .... The GSK (SSL toolkit used by the plugin) requires that all applications be compiled with Sun Workshop 5 in order for SSL to work on Solaris. iPlanet on Solaris is compiled with Sun Workshop 4.2 causing exceptions not to be handled correctly i the GSK code. There are no workarounds for this limitation, so the only webservers that support the plugin withSSL on Solaris are IHS and Apache (compiled with Sun Workshop 5). ...... Similar information is in WSAS Release Notes: Defects 105995, 105995.RN, and 106012 - SSL enabled plugin support. The SSL enabled plugin is not supported on Solaris with iPlanet webserver. Nor is the SSL enabled plugin supported on HP-UX with Apache HTTP Server or with iPlanet webserver Version 4.1 SP7.Local fix L3/Development Plugin: This limitation is a result of moving up to GSKIT 5.0 In further analysis of the problem, we have found that this limitation is removed by backing off to GSKIT 4.0 along with some code changes. This is for the limitations specified above when using the plugin with SSL and iPlanet and Domino combinations. We are working on an efix to prevent this limitation. . Efix is on wasdoc0/apars/PQ52815; must be ftp'd to customers as it is too big for most email systems.Problem summary **************************************************************** * USERS AFFECTED: All WebSphere Application Server on Solaris * * users who use the iPlanet plugin and wish * * to have the plugin communicate with * * WebSphere Application Server using SSL. * **************************************************************** * PROBLEM DESCRIPTION: The iPlanet plugin for WebSphere * * Application Server did not support * * SSL on Solaris. * **************************************************************** * RECOMMENDATION: * **************************************************************** The iPlanet plugin did not support SSL because the toolkit used for this functionality required iPlanet be compiled with Sun Workshop 5.0 and it is not.Problem conclusion Changed the iPlanet plugin so that on Solaris we loaded a different version of the SSL toolkit that is compatible with the compiler used by iPlanet. ************************************* Note, the ZE fixer flag has been set on this APAR. The 4.0.2 fixpack didn't properly install the GSKit library, so the GSKit part of this fix is still required for 4.0.2 users.Temporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: Modules/Macros
SRLS
|
Document Information |
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ52815
IBM Group: Software Group
Modified date: Nov 1, 2002
(C) Copyright IBM Corporation 2000, 2006. All Rights Reserved.