IBM Support

IJ35760: THE HUB SOAP SERVER DOES NOT ACCOMMODATE THE USE OF MULTI-FACTOR AUTHENTICATION, (MFA).

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as new function.

Error description

  • Every request to the SOAP server is authenticated.
If the authentication subsystem used to authenticate users
relies on MFA, then every individual authentication request made
by the Hub will either require a new password or else an
'out-of-band' authorization by the user.
 This becomes impractical if a user wishes to perform a large
number of SOAP requests.
In addition, certain tacmd requests involve multiple requests to
the SOAP server and these will fail when the same credentials
are used in multiple authentications.

Solution:

The SOAP server has been enhanced to support Session IDs.
If a requestor supports Session IDs, the SOAP server creates an
ID when a set of user credentials is initially authenticated and
the ID is returned to the requestor.
If the requestor provides the session ID in subsequent requests,
re-authentication of the credentials is avoided.

Local fix

  • 



Problem summary


    

  • THE HUB SOAP SERVER DOES NOT ACCOMMODATE THE USE OF MULTI-FACTOR
 AUTHENTICATION, (MFA).

    



Problem conclusion


    

  • Fix delivered in SP11

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    IJ35760
    • 

  • Reported component name
    TEMS
    • 

  • Reported component ID
    5724C04MS
    • 

  • Reported release
    630
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2021-10-25
    • 

  • Closed date
    2023-06-02
    • 

  • Last modified date
    2023-06-02
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    TEMS
    • 

  • Fixed component ID
    5724C04MS
    • 



Applicable component levels


    








      
              
                            

              

              [{"Business Unit":{"code":"BU029","label":"Software"},"Product":{"code":"SSZ8F3","label":"IBM Tivoli Monitoring V6"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"630"}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            02 June 2023
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback