IBM Support

IT00769: EXPIRED LTPA TOKENS MAY BE ALLOWED THROUGH DATAPOWER IF AUTHENTICATION CACHE ENABLED

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as fixed if next.

Error description

  • With authentication cache enabled, an expired LTPA token
    may be allowed through DataPower to the backend server.
    
    This can occur if the LTPA token has already been cached and it
    expired before the Authentication cache timeout.
    

Local fix

  • If there is not a high volume of AAA traffic, disable
    authentication cache.
    

Problem summary

  • This will be fixed in the next major release.
    

Problem conclusion

Temporary fix

Comments

APAR Information

  • APAR number

    IT00769

  • Reported component name

    DATAPOWER

  • Reported component ID

    DP1234567

  • Reported release

    600

  • Status

    CLOSED FIN

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2014-04-03

  • Closed date

    2014-04-11

  • Last modified date

    2014-04-11

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

Applicable component levels

  • R601 PSY

       UP



Document information

More support for: IBM DataPower Gateways
General

Software version: 6.0.0

Reference #: IT00769

Modified date: 11 April 2014