IBM Support

PM07687: RESETLDAPBINDINFO METHOD NOT UPDATING PASSWORD IN SECURITY.XML

Fixes are available

7.0.0.11: WebSphere Application Server V7.0 Fix Pack 11 for IBM i
7.0.0.11: WebSphere Application Server V7.0 Fix Pack 11 for Windows
7.0.0.11: WebSphere Application Server V7.0 Fix Pack 11 for HP-UX
7.0.0.11: WebSphere Application Server V7.0 Fix Pack 11 for AIX
7.0.0.11: Java SDK 1.6 SR7 Cumulative Fix for WebSphere Application Server
7.0.0.11: WebSphere Application Server V7.0 Fix Pack 11 for Solaris
7.0.0.11: WebSphere Application Server V7.0 Fix Pack 11 for Linux
7.0.0.13: WebSphere Application Server V7.0 Fix Pack 13 for AIX
7.0.0.13: WebSphere Application Server V7.0 Fix Pack 13 for HP-UX
7.0.0.13: WebSphere Application Server V7.0 Fix Pack 13 for IBM i
7.0.0.13: WebSphere Application Server V7.0 Fix Pack 13 for Linux
7.0.0.13: WebSphere Application Server V7.0 Fix Pack 13 for Solaris
7.0.0.13: WebSphere Application Server V7.0 Fix Pack 13 for Windows
7.0.0.13: Java SDK 1.6 SR8FP1 Cumulative Fix for WebSphere Application Server
7.0.0.15: WebSphere Application Server V7.0 Fix Pack 15 for AIX
7.0.0.15: Java SDK 1.6 SR9 Cumulative Fix for WebSphere Application Server
7.0.0.15: WebSphere Application Server V7.0 Fix Pack 15 for HP-UX
7.0.0.15: WebSphere Application Server V7.0 Fix Pack 15 for IBM i
7.0.0.15: WebSphere Application Server V7.0 Fix Pack 15 for Linux
7.0.0.15: WebSphere Application Server V7.0 Fix Pack 15 for Solaris
7.0.0.15: WebSphere Application Server V7.0 Fix Pack 15 for Windows
7.0.0.17: WebSphere Application Server V7.0 Fix Pack 17
7.0.0.17: Java SDK 1.6 SR9 FP1 Cumulative Fix for WebSphere Application Server
7.0.0.19: WebSphere Application Server V7.0 Fix Pack 19
7.0.0.21: WebSphere Application Server V7.0 Fix Pack 21
7.0.0.23: WebSphere Application Server V7.0 Fix Pack 23
7.0.0.25: WebSphere Application Server V7.0 Fix Pack 25
7.0.0.27: WebSphere Application Server V7.0 Fix Pack 27
7.0.0.29: WebSphere Application Server V7.0 Fix Pack 29
7.0.0.31: WebSphere Application Server V7.0 Fix Pack 31
7.0.0.27: Java SDK 1.6 SR13 FP2 Cumulative Fix for WebSphere Application Server
7.0.0.33: WebSphere Application Server V7.0 Fix Pack 33
7.0.0.35: WebSphere Application Server V7.0 Fix Pack 35
7.0.0.37: WebSphere Application Server V7.0 Fix Pack 37
7.0.0.39: WebSphere Application Server V7.0 Fix Pack 39
7.0.0.41: WebSphere Application Server V7.0 Fix Pack 41
7.0.0.43: WebSphere Application Server V7.0 Fix Pack 43
7.0.0.45: WebSphere Application Server V7.0 Fix Pack 45
7.0.0.19: Java SDK 1.6 SR9 FP2 Cumulative Fix for WebSphere Application Server
7.0.0.21: Java SDK 1.6 SR9 FP2 Cumulative Fix for WebSphere
7.0.0.23: Java SDK 1.6 SR10 FP1 Cumulative Fix for WebSphere
7.0.0.25: Java SDK 1.6 SR11 Cumulative Fix for WebSphere Application Server
7.0.0.27: Java SDK 1.6 SR12 Cumulative Fix for WebSphere Application Server
7.0.0.29: Java SDK 1.6 SR13 FP2 Cumulative Fix for WebSphere Application Server
7.0.0.45: Java SDK 1.6 SR16 FP60 Cumulative Fix for WebSphere Application Server
7.0.0.31: Java SDK 1.6 SR15 Cumulative Fix for WebSphere Application Server
7.0.0.35: Java SDK 1.6 SR16 FP1 Cumulative Fix for WebSphere Application Server
7.0.0.37: Java SDK 1.6 SR16 FP3 Cumulative Fix for WebSphere Application Server
7.0.0.39: Java SDK 1.6 SR16 FP7 Cumulative Fix for WebSphere Application Server
7.0.0.41: Java SDK 1.6 SR16 FP20 Cumulative Fix for WebSphere Application Server
7.0.0.43: Java SDK 1.6 SR16 FP41 Cumulative Fix for WebSphere Application Server

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Product Version: WebSphre Application Server 7.0.0.5
    OS: Linux
    
    Problem Description:
    resetLdapBindInfo method is not updating the secutiry.xml with
    new password dynamically during runtime.
    No exceptions after running the method, it is just not updating
    the password. Same result even after invokng
    AdminConfig.save() to save the changes manually.
    
    Log snippet:
    
    [18/01/10 17:06:45:516 EST] 00000015 JMXObjectOutp >
    replaceObject,
    obj=resetLdapBindInfo Entry
    ------
    
    [18/01/10 17:06:45:519 EST] 00000015 JMXObjectOutp >
    replaceObject,
    obj=descriptorType=operation, displayName=resetLdapBindInfo,
    name=resetLdapBindInfo, role=operation,
    targetObjectType=ObjectReference
    Entry
    
    ------------
    [18/01/10 17:06:45:520 EST] 00000015 JMXObjectOutp >
    replaceObject,
    obj={role=operation, descriptorType=operation,
    targetObjectType=ObjectReference, name=resetLdapBindInfo,
    displayName=resetLdapBindInfo} Entry
    
    -------
    
    [18/01/10 17:06:45:870 EST] 00000014 AdminServiceI 3   For
    operation
    resetLdapBindInfo of MBean SecurityAdmin
    [18/01/10 17:06:45:870 EST] 00000014 AdminServiceI 3   Resource
    units' names:
    LAB01WAS_ADM00
    adminagent
    [18/01/10 17:06:45:870 EST] 00000014 AdminServiceI 3   Resource
    units'types:
    Node Server
    -----------------
    [18/01/10 17:06:45:872 EST] 00000014 AdminServiceI >
    getMBeanParams
    Entry resetLdapBindInfo
    [Ljava.lang.Object;@42a642a6
    [18/01/10 17:06:45:872 EST] 00000014 AdminServiceI 3   Operation
    Info ModelMBeanOperationInfo:
    resetLdapBindInfo ; Description: authenticates the user ;
    Descriptor:
    descriptorType=operation, displayName=resetLdapBindInfo,
    name=resetLdapBindInfo, role=operation,
    targetObjectType=ObjectReference
    ; ReturnType: void ; Signature: java.lang.String,
    java.lang.String,
    
    Problem recreation steps:
    
    Client is able to recreate the issue with following steps
    
    - Setup LDAP custom registry with global security
    - Changed password in ldap
    - File updateldappassword.py:
    ldapBindUser="admin"
    ldapBindPassword="newpass"
    secMBeans=AdminControl.queryNames('type=SecurityAdmin,*')
    if len(secMBeans) == 0:
    print "Security Mbean was not found
    "
    exit
    plist=[ldapBindUser, ldapBindPassword]
    for secMBean in secMBeans.splitlines():
    AdminControl.invoke(secMBean, 'resetLdapBindInfo', plist)
    
    - Execute wsadmin.sh -lang jython -username yyyyy -password
    xxxxx -f updateldappassword.py
    

Local fix

  • N/A
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED:  All users of IBM WebSphere Application      *
    *                  Server V7.0                                 *
    ****************************************************************
    * PROBLEM DESCRIPTION: resetLdapBindInfo on the                *
    *                      SecurityAdmin MBean fails to update     *
    *                      the security.xml and runtime LDAP       *
    *                      bind account.                           *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    A code error exists in the WebSphere Application Server V7.0
    stream which resulted in a ClassCastException in the
    resetLdapBindInfo method. Due to a try/catch block, the
    exception is suppressed and the method flow is terminated
    prematurely.
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    PM07687

  • Reported component name

    WEBSPHERE APP S

  • Reported component ID

    5724J0800

  • Reported release

    700

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2010-02-16

  • Closed date

    2010-03-24

  • Last modified date

    2010-03-24

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WEBSPHERE APP S

  • Fixed component ID

    5724J0800

Applicable component levels

  • R700 PSY

       UP

[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.0","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
24 October 2021