IBM Support

IC85974: ADD SWITCH FOR SUPPORTING LDAP SEARCH FOR GROUPS IN RBM AS BIG ENDIAN

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as fixed if next.

Error description

  • WebSphere DataPower SOA Appliances
    
    DataPower pass DN of user certificate to LDAP as big endian
    in RBM and with / instead of comma while most ldap servers use
    little endian.
    i.e. C=AU/OU=GOV/OU=PKI/CN=user123
    
    The ldap group search is failed due to the reverse DN.
    

Local fix

Problem summary

  • When the EI stage of an RBM configuration returns a DN in
    big-endian format, an LDAP group search will not find
    groups associated with the DN.  This is because the search
    is using the DN as presented, rather than converting it
    to LDAP format.
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    IC85974

  • Reported component name

    DTPWR INTGRAPL

  • Reported component ID

    DP905XI52

  • Reported release

    401

  • Status

    CLOSED FIN

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2012-08-21

  • Closed date

    2012-09-11

  • Last modified date

    2012-09-11

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

Applicable component levels

  • R400 PSN

       UP



Document information

More support for: WebSphere DataPower Integration Appliance XI52

Software version: 4.0.1

Reference #: IC85974

Modified date: 11 September 2012