IC95977: WHEN A PRIVILEGED USER IS RESTRICTED TO A DOMAIN, CERTAIN STEPS MIGHT ALLOW THAT USER ACCESS TO OTHER DOMAINS
Fixes are available
Closed as program error.
When a privileged user is restricted to a domain, and another privileged user takes certain steps, the domain restriction for the restricted user might be removed. If this is the only domain to which the user was restricted, the user might have the ability to log into any domain, including default, and execute any command.
An attempt to delete a domain which serves as a domain restriction on a privileged user, might allow that privileged user to access additional domains on the appliance. This issue was caused by an inconsistency in the domain removal procedure.
Fix is available in 220.127.116.11 and 18.104.22.168. For a list of the latest fix packs available, please see: http://www-01.ibm.com/support/docview.wss?uid=swg21237631
Reported component name
Reported component ID
Last modified date
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fixed component name
Fixed component ID
Applicable component levels