PM87346: CLIENT REQUESTS FAIL WHEN TRANSPORT SECURITY IS ENABLED AND AUTHENTICATION IS NOT.

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

APAR status

  • Closed as program error.

Error description

  • Client receives an exception about missing
    credentials when client authentication is marked as being
    supported or
    never.
    

Local fix

  • n/a
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED:  Users that have global security enabled.    *
    ****************************************************************
    * PROBLEM DESCRIPTION: If global security flag is on, but the  *
    *                      credentialAuthentication value is       *
    *                      Supported, the client cannot connect to *
    *                      the data grid without using             *
    *                      credentials.                            *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    The authentication check with user credentials occurs even
    when the credentialAuthentication value is Supported. This
    setting
    should allow the connection work if the client did not specify
    the credentials.
    

Problem conclusion

  • The following scenarios are supported:
    
     - If global security flag is on, but the
    ccredentialAuthentication value is Supported, the client can
    connect to the data grid
    without using credentials. In this scenario, the client
    authentication is skipped. If user has set up data grid level
    security on the XML file, the permission check against the grid
    andmap may fail.
    
    - If global security flag is on, but the credentialAuthenticatio
    value is Supported, the client can also connect to the data grid
    with credentials. In this scenario, the client authentication
    occurs.
    
    - If global security flag is on, but the
    credentialAuthentication value is set to Required,  the client
    must pass in the credentials. Otherwise, IBM eXtremeIO (XIO)
    throws a "Client security context null" exception.
    

Temporary fix

Comments

APAR Information

  • APAR number

    PM87346

  • Reported component name

    WS EXTREME SCAL

  • Reported component ID

    5724X6702

  • Reported release

    860

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2013-04-18

  • Closed date

    2013-05-20

  • Last modified date

    2013-05-20

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    WS EXTREME SCAL

  • Fixed component ID

    5724X6702

Applicable component levels

  • R860 PSY

       UP



Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

WebSphere eXtreme Scale

Software version:

860

Reference #:

PM87346

Modified date:

2013-05-20

Translate my page

Machine Translation

Content navigation