SOAP authentication is disabled after 5 failed logins on ITM 622 FP7 or ITM 623 FP1

Flash (Alert)


Abstract

In ITM 622 FP07 and later and 6.23 FP01, after 5 failed SOAP login requests subsequent hub TEMS authentication requests are locked out for a 30 minute time period.

Content

Local workaround:

Linux and UNIX systems:

1. Edit <ITM HOME>/config/<tems-hostname>_ms_<temsname>.config

2. Update the variable KDHS_MAX_FAILED_LOGINS. Specify the number of invalid logins required, maximum value is 2147483646.

3. Update the variable KDHS_ACCOUNT_LOCKOUT_PERIOD. Specify the time period for the lockout, minimum value is 1.

4. Restart the TEMS.

Windows systems:

1. Select the monitoring agent that you want to update in the Manage Tivoli Enterprise Monitoring Services window.
2. Right-click and select Advanced > Edit Variables.
3. Click Add.
4. Update the variable KDHS_MAX_FAILED_LOGINS. Specify the number of invalid logins required to lockout in the Value field, maximum value is 2147483646.
5. Update the variable KDHS_ACCOUNT_LOCKOUT_PERIOD. Specify the time period for the lockout in the Value field. The minimum value is 1.
6. Click OK.
7. Click OK again.

APAR IV27701 has been created to solve this problem and will be delivered in ITM 6.23 FP2.


Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

Tivoli Monitoring Version 6

Software version:

6.2.2.7, 6.2.3.1

Operating system(s):

AIX, HP-UX, Linux, Solaris, Windows, i5/OS, z/OS

Reference #:

1611443

Modified date:

2013-08-14

Translate my page

Machine Translation

Content navigation