PM86731: Group rights are not propogated to the members if there exists a comma in the DN of the group in LDAP

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

APAR status

  • Closed as program error.

Error description

  • When DOORS is connected to RDS and if a user is a part of a
    group which has a comma in its name, the following behavior is
    obeserved:
    
    - The group does not reflect in DOORS.
    - None of the groups which a user is a member of reflect under
    it.
    - Access rights of the groups that the user is a member of are
    not propagted for the user.
    
    Steps to reproduce -
    
    1. Create a group in Active Directory 'Group,1'. When creating
    the group an error message would pop-up that the group contains
    illegal characters and if you continue the same would be
    replaced by a underscore(_)
    2. Click on 'OK'. A new group would be created.
    3. Create another group 'Group2' in Active Directory.
    4. Create a user 'User1' in Active Directory.
    5. Assign the user 'User1' as a member of group 'Group,1'
    6. Login into DOORS as the 'Administrator' and search for the
    user 'User1' through 'Manager Users'. Click on the 'Groups' tab
    for the user. It will be empty.
    7. The group 'Group,1' does not reflect under 'Manage Users ?
    Groups'
    8. Assign the user 'User1' as a member of the groups 'Group,1'
    and 'Group2'
    9. Re-login into DOORS as the 'Administrator' and search for the
    user 'User1' through 'Manager Users'. Click on the 'Groups' tab
    for the user. It will be empty.
    10. The group 'Group,1' does not reflect under 'Manage Users ?
    Groups', whereas the user reflects as a member of the group
    'Group2'
    11. Access rights for 'Group2' would not be propagated for the
    user 'User1' as well.
    12. Remove the user 'User1' as a member of 'Group,1'. The user
    is now a member of 'Group2' only.
    13. Re-login into DOORS as the Administrator and search for the
    user 'User1' through 'Manager Users'. Click on the 'Groups' tab
    for the user. The group 'Group2' would reflect and the access
    rights for the same would be propagated to the user as well.
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED:                                              *
    ****************************************************************
    * PROBLEM DESCRIPTION:                                         *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    LDAP Special characters for groups were not getting handled
    properly. As a result a group with special characters was
    not listed in DOORS.
    

Problem conclusion

  • This defect is now fixed in RDS 5.2.1 C Lib. The fix will be
    available to the customer when DOORS picks up this version
    of libraries and integrates it to their product.
    

Temporary fix

Comments

APAR Information

  • APAR number

    PM86731

  • Reported component name

    TLOGIC DIR SRVR

  • Reported component ID

    RATLTDS00

  • Reported release

    520

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2013-04-10

  • Closed date

    2014-12-02

  • Last modified date

    2014-12-02

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    TLOGIC DIR SRVR

  • Fixed component ID

    RATLTDS00

Applicable component levels

  • R520 PSN

       UP



Rate this page:

(0 users)Average rating

Document information


More support for:

Rational Common Components
Directory Server

Software version:

5.2

Reference #:

PM86731

Modified date:

2014-12-02

Translate my page

Machine Translation

Content navigation