PQ66385: ASSEMBLING J2EE APPLICATION MANUAL SA22-7836-04 INCORRECTLY DOCSSEVERAL OF THE V4.01 WAS.CONF PARMS FOR APPSERVER.JAVA.EXTRAPARM

APAR status
Closed as documentation error.

Error description
ASSEMBLING J2EE APPLICATION MANUAL SA22-7836-04 INCORRECTLY DOCS
SEVERAL OF THE V4.01 WAS.CONF PARMS FOR APPSERVER.JAVA.EXTRAPARM
----------------------------------------------------------------
The manual incorrectly spelled the parameter
     com.ibm.ws390.wc.includedWebContainers
incorrectly spelling it as:
     com.ibm.ws390.wc.includeWebContainers
----------------------------------------------------------------
The manual uses the incorrect case for the case sensitive parm
    Disable.J2EE
incorreclty showing it as DISABLE.J2EE
and shows the case for its acceptable vales as TRUE / FALSE
which should be lower case:  true / false
----------------------------------------------------------------
The manual shows some examples of the appserver.java.extraparm=
for these parms.  Not all examples show the characters
  =-D
after the appserver.java.extraparm and before the actual parm.
A correct example would be:
appserver.java.extraparm=-Dcom.ibm.ws390.wc.serverCheckInterval=
<interval>
----------------------------------------------------------------
Local fix
HBC
Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V4.0.1 for z/OS and OS/390.                  *
*                                                              *
****************************************************************
* PROBLEM DESCRIPTION:                                         *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
The manual incorrectly spelled the parameter
"com.ibm.ws390.wc.includedWebContainers"
as: "com.ibm.ws390.wc.includeWebContainers".

Notes 1 and 2 in Table 5. Summary of the two Versions of the Web
container security collaborator contained in Chapter 4 of
WebSphere Application Server V4.01 for z/OS and OS/390:
Assembling J2EE Applications are not technically complete.
Additonal information needs to be provided.
Problem conclusion
Appendix C of  WebSphere Application Server V4.0.1 for z/OS and
OS/390: Assembling J2EE Applications manual has been
updated with the following changes:
1. The spelling of the com.ibm.ws390.wc.includedWebContainers
   parameter has been corrected.
2. References to the case sensitive parmameter Disable.J2EE
   of the appserver.java.extraparm= property have been
   corrected.
3. The characters -D have been added between the equal sign
   and the parameter values in all of the
   appserver.java.extraparm= property examples.

The notes contained in Table 5 of this publication will be
updated as follows:
1. To enable Form-Based authentication or single sign-on
capability for Web applications being received by the IBM HTTP
Server for z/OS, working in conjunction with the WebSphere for
z/OS Local Redirector Plugin, you must:

a. Set the WebAuth.LoginToken.Encrypt property in the
webcontainer.conf file to true.
b. Create a profile of the form BPX.SRV.<userid> in the SURRO
GATE class for each userid that should have access to FormBased
authentication. (The profile BPX.SRV.* may be used if all
users should be allowed to login). Grant the
IBM HTTP Server's userid read access to this profile.
c. Set the JAVA_PROPAGATE variable In the IBM HTTP Server for
z/OS's httpd.envvars file to NO.

Additionally, if you are going to be using ICSF, you must:

a. Create ICSF keys and grant the IBM HTTP Server for z/OS's
address space access to them.
b. Set the WebAuth.EncryptionKeyLabel property in the
webcontainer.conf file to label of the cryptographic key that
is to be used for Web application security.

If you are not going to be using ICSF, you must:

a. Set the WEB_SECURITY_VERSION property in the jvm.properties
file to 1.
b. Set the following properties in the webcontainer.conf file:
- The  WebAuth.UnauthenticatedUserSurrogate property must be
   set to the identity under which the HTTP Server runs.
-  The WebAuth.SingleSignOn.Enabled property must be set to fals
- The WebAuth.LoginToken.Encrypt property must be set to false.

2. To enable Form-Based authentication or single sign-on
capability for Web applications being received by the HTTP or
HTTPS Transport Handler, you must:

a. Set the following properties in the webcontainer.conf file:
- The WebAuth.EncryptionKeyLabel property must specify the
  label of the cryptographic key that is to be used for Web
  application security.
- The WebAuth.LoginToken.Encrypt property must be set to true.

b. Add the WEB_SECURITY_VERSION property to the jvm.properties
   file and set it to 2.
c. Create ICSF keys and make them available to the server
   region.
d. Permit the server region user ID to the CSFSERV general
   resource class.
e. Add the ENABLE_TRUSTED_APPLICATIONS environment variable to
   your J2EE server's current.env. file, and set it to 1.

The most current version of this publication is available on
the product library page at URL:

http://www-3.ibm.com/software/webservers/appserv/zos_os390/
library.html
Temporary fix Comments
APAR information
APAR number PQ66385
Reported component name WEBSPHERE OS/39
Reported component ID 5655A9800
Reported release 401
Status CLOSED DOC
PE NoPE
HIPER NoHIPER
Submitted date 2002-09-19
Closed date 2002-11-20
Last modified date 2003-01-07

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros

Fix information

Applicable component levels


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 401
Software edition:
Reference #: PQ66385
IBM Group: Software Group
Modified date: Jan 7, 2003