PQ66385: ASSEMBLING J2EE APPLICATION MANUAL SA22-7836-04 INCORRECTLY DOCSSEVERAL OF THE V4.01 WAS.CONF PARMS FOR APPSERVER.JAVA.EXTRAPARM | |||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||
APAR status Closed as documentation error. Error description ASSEMBLING J2EE APPLICATION MANUAL SA22-7836-04 INCORRECTLY DOCS SEVERAL OF THE V4.01 WAS.CONF PARMS FOR APPSERVER.JAVA.EXTRAPARM ---------------------------------------------------------------- The manual incorrectly spelled the parameter com.ibm.ws390.wc.includedWebContainers incorrectly spelling it as: com.ibm.ws390.wc.includeWebContainers ---------------------------------------------------------------- The manual uses the incorrect case for the case sensitive parm Disable.J2EE incorreclty showing it as DISABLE.J2EE and shows the case for its acceptable vales as TRUE / FALSE which should be lower case: true / false ---------------------------------------------------------------- The manual shows some examples of the appserver.java.extraparm= for these parms. Not all examples show the characters =-D after the appserver.java.extraparm and before the actual parm. A correct example would be: appserver.java.extraparm=-Dcom.ibm.ws390.wc.serverCheckInterval= <interval> ----------------------------------------------------------------Local fix HBCProblem summary **************************************************************** * USERS AFFECTED: All users of WebSphere Application Server * * V4.0.1 for z/OS and OS/390. * * * **************************************************************** * PROBLEM DESCRIPTION: * **************************************************************** * RECOMMENDATION: * **************************************************************** The manual incorrectly spelled the parameter "com.ibm.ws390.wc.includedWebContainers" as: "com.ibm.ws390.wc.includeWebContainers". Notes 1 and 2 in Table 5. Summary of the two Versions of the Web container security collaborator contained in Chapter 4 of WebSphere Application Server V4.01 for z/OS and OS/390: Assembling J2EE Applications are not technically complete. Additonal information needs to be provided.Problem conclusion Appendix C of WebSphere Application Server V4.0.1 for z/OS and OS/390: Assembling J2EE Applications manual has been updated with the following changes: 1. The spelling of the com.ibm.ws390.wc.includedWebContainers parameter has been corrected. 2. References to the case sensitive parmameter Disable.J2EE of the appserver.java.extraparm= property have been corrected. 3. The characters -D have been added between the equal sign and the parameter values in all of the appserver.java.extraparm= property examples. The notes contained in Table 5 of this publication will be updated as follows: 1. To enable Form-Based authentication or single sign-on capability for Web applications being received by the IBM HTTP Server for z/OS, working in conjunction with the WebSphere for z/OS Local Redirector Plugin, you must: a. Set the WebAuth.LoginToken.Encrypt property in the webcontainer.conf file to true. b. Create a profile of the form BPX.SRV.<userid> in the SURRO GATE class for each userid that should have access to FormBased authentication. (The profile BPX.SRV.* may be used if all users should be allowed to login). Grant the IBM HTTP Server's userid read access to this profile. c. Set the JAVA_PROPAGATE variable In the IBM HTTP Server for z/OS's httpd.envvars file to NO. Additionally, if you are going to be using ICSF, you must: a. Create ICSF keys and grant the IBM HTTP Server for z/OS's address space access to them. b. Set the WebAuth.EncryptionKeyLabel property in the webcontainer.conf file to label of the cryptographic key that is to be used for Web application security. If you are not going to be using ICSF, you must: a. Set the WEB_SECURITY_VERSION property in the jvm.properties file to 1. b. Set the following properties in the webcontainer.conf file: - The WebAuth.UnauthenticatedUserSurrogate property must be set to the identity under which the HTTP Server runs. - The WebAuth.SingleSignOn.Enabled property must be set to fals - The WebAuth.LoginToken.Encrypt property must be set to false. 2. To enable Form-Based authentication or single sign-on capability for Web applications being received by the HTTP or HTTPS Transport Handler, you must: a. Set the following properties in the webcontainer.conf file: - The WebAuth.EncryptionKeyLabel property must specify the label of the cryptographic key that is to be used for Web application security. - The WebAuth.LoginToken.Encrypt property must be set to true. b. Add the WEB_SECURITY_VERSION property to the jvm.properties file and set it to 2. c. Create ICSF keys and make them available to the server region. d. Permit the server region user ID to the CSFSERV general resource class. e. Add the ENABLE_TRUSTED_APPLICATIONS environment variable to your J2EE server's current.env. file, and set it to 1. The most current version of this publication is available on the product library page at URL: http://www-3.ibm.com/software/webservers/appserv/zos_os390/ library.htmlTemporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: Modules/Macros
|
Document Information |
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 401
Software edition:
Reference #: PQ66385
IBM Group: Software Group
Modified date: Jan 7, 2003
(C) Copyright IBM Corporation 2000, 2006. All Rights Reserved.