PQ57615: ADDING USERS TO ROLES THROUGH BROWSER CONSOLE DOESN'T WORK.

APAR status
Closed as program error.

Error description
AEs 4.0.1
Win2000
.
When trying to associate Roles with Users or Groups throught the
AEs/d Administrative console (browser)
the update appears successful but actually fails. Not only does
it not create the proper accessId for the user but
it also removes the ones which existed before.
.
Customers ibm-application-bnd.xmi has following entry
    <users xmi:id="User_2" name="twentebr" accessId=""/>
.
This should look like:
    <users xmi:id="User_1" name="test"
accessId="user:PIGDOMAIN100/S-1-5-21-1177238915-113007714-214693
7053-1001"/>
.
This results in an "unauthorization exception" when a user tries
to access a web resource where they should have
Local fix
Manually add accessId to xmi file.
Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server users of        *
*                 enabled security in AEs.                     *
****************************************************************
* PROBLEM DESCRIPTION: Security accessID is not being filled   *
*                      in properly by some tools.              *
****************************************************************
* RECOMMENDATION: apply Efix.                                  *
****************************************************************
Some assemble / deployment tools do not fill security accessID
properly(empty string). It should either fill fully qualified
ID, or do nothing. Security runtime will fix the problem by
treating empty ID as not ID presented.
Problem conclusion
Security runtime will fix the problem by treating empty access
ID as not ID presented, thus will invoke registry to refill the
access ID.
Temporary fix
send efix to customer
Comments
APAR information
APAR number PQ57615
Reported component name WEBSPHERE AE NT
Reported component ID 5630A2201
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2002-02-07
Closed date 2002-03-06
Last modified date 2002-03-06

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
SECURITY          

Fix information
Fixed component name WEBSPHERE AE NT
Fixed component ID 5630A2201

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ57615
IBM Group: Software Group
Modified date: Mar 6, 2002