PQ52708: SECURITY TRUSTASSOCIATION FUNCTIONALITY DOES NOT WORK PROPERLY IN 4.0 AE AND THE DOCUMENTATION IS CONFUSING.

APAR status
Closed as program error.

Error description
Even though these bugs are not serious, I encourage you to
address them
in PTF 1 or many more customers will be as confused as
I am. Please provide me with an APAR number and some
ta=(TrustAssociationInterceptor)myClass.newInstance();
That line does a great deal of implicit work and can fail for
many reasons. The audit message should be after that line in
.act, the trustAssocation audit messages actually reports that
the interceptor has been initialized successfully.
This entire adventure took me over 10 hours to figure out.
Local fix
No workaround known at this time.
Problem summary
****************************************************************
* USERS AFFECTED: All WebSphere Application Server users       *
*                 who have enabled security and configured     *
*                 trust association.                           *
****************************************************************
* PROBLEM DESCRIPTION: Trust Association Interceptor is        *
*                      ignored without warning if              *
*                      configuration is incorrect.             *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
If a *.config property is not present in
trustedservers.properties (e.g.
com.ibm.websphere.security.trustassociation.fordwsl.config)
the Trust Association interceptor is ignored.
Additionally, no audit/error message is reported if there is
a configuration issue.
Problem conclusion
This is working as designed but the documentation was
unclear as to how to properly configure Trust Association.
There is now an audit message after Trust Association
initialization to report this condition.
Temporary fix Comments
APAR information
APAR number PQ52708
Reported component name WEBSPHERE AE SO
Reported component ID 5630A2202
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2001-09-24
Closed date 2001-11-06
Last modified date 2003-04-17

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
SECURITY          

Fix information
Fixed component name WEBSPHERE AE SO
Fixed component ID 5630A2202

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ52708
IBM Group: Software Group
Modified date: Apr 17, 2003