IBM Support

OA18798: HOD: WHEN THE INCORRECT PASSWORD IS USED TO ACCESS CLIENT CERTIFICATE, THE LOCATION OF THE CERTIFICATE IS DISPLAYED.

A fix is available

IBM Websphere Host On-Demand V10.0.3.0 Manufacturing Refresh
Obtain the fix for this APAR.

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Host on-Demand V10
-------------------

The Host on-Demand Deployment Wizard contains an option to
suppress the display of certain Session information. When the
selection is made to hide the display client certificate source
data but an incorrect passwrods is entered the source
information of the certificate is in fact displayed.



----------------------
Kewords: hidden password certificate

Local fix

  • 



Problem summary


    

  • ****************************************************************
* USERS AFFECTED: Clients configured for Secure sessions       *
*                 with Authentication using a client           *
*                 Certificate.                                 *
****************************************************************
* PROBLEM DESCRIPTION: The HOD client can be configured to     *
*                      hide the information showing the        *
*                      source of the client certificate. If    *
*                      the user enters an invalid password     *
*                      when prompted, the error that is        *
*                      displayed contains the full path        *
*                      information of the certificate.         *
****************************************************************
* RECOMMENDATION: HOD users wishing to hide the location of    *
*                 personal users certificates should install   *
*                 the HOD code containing this fix.            *
****************************************************************
HOD was not checking for the option to Hide Certificate
Source before displaying the error message.

    



Problem conclusion


    

  • The HOD code was updated to check for the option to HIDE the
location of users' certificates has been set before displaying
an error message.

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    OA18798
    • 

  • Reported component name
    HOD MVS
    • 

  • Reported component ID
    5733A5900
    • 

  • Reported release
    A00
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt
    • 

  • Submitted date
    2006-11-02
    • 

  • Closed date
    2006-12-22
    • 

  • Last modified date
    2015-05-14
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    HOD MVS
    • 

  • Fixed component ID
    5733A5900
    • 



Applicable component levels


    

  • RA00  PSY  IP22925
       UP07/05/11  I  1000
    • 



Fix is available


    

  • Select the PTF appropriate for your component level.
You will be required to sign in. Distribution on physical
media is not available in all countries.
    








      
              
                            

              

              [{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSS9FA","label":"IBM Host On-Demand"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"A.0","Line of Business":{"code":"LOB35","label":"Mainframe SW"}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            17 October 2021
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback