PI58483: SUPPORT SSL CONNECTIONS TO DB2 FOR ARCHIVE FEATURE IN THE CAE WEB CLIENT

Obtain the fix for this APAR.

APAR status

• Closed as new function.

Error description

• Description:
  Through the CAE Web Client, it is possible to define an archive
  connection to be able to view the collected data which have been
  loaded in DB2. When accessing the collected data stored in DB2
  Z/OS, the CAE Server establishes a JDBC connection to DB2.
  But Query Monitor does not currently support SSL for JDBC
  connections to DB2. This is very unfortunate because it forces
  customers to still allow this unsecure DB2 connection in order
  to be able to use this Query Monitor function.
  .
  Use case:
  This feature allows customer to improve security and to
  completely forbid non SSL access to their DB2s.
  

Local fix

Problem summary

• ****************************************************************
  * USERS AFFECTED: Users of IBM DB2 Query Monitor z/OS.         *
  ****************************************************************
  * PROBLEM DESCRIPTION: Through the CAE Web Client, it is       *
  *                      possible to define an archive           *
  *                      connection to be able to view the       *
  *                      collected data which have been loaded   *
  *                      in DB2. When accessing the collected    *
  *                      data stored in DB2 Z/OS, the CAE        *
  *                      Server establishes a JDBC connection    *
  *                      to DB2. But Query Monitor does not      *
  *                      currently support SSL for JDBC          *
  *                      connections to DB2. This is very        *
  *                      unfortunate because it forces customers *
  *                      to still allow this unsecure DB2        *
  *                      connection in order to be able to use   *
  *                      this Query Monitor function.            *
  *                      Use case:                               *
  *                      This feature allows customer to         *
  *                      improve security and to completely      *
  *                      forbid non SSL access to their DB2s.    *
  ****************************************************************
  * RECOMMENDATION: APPLY the PTF.                               *
  ****************************************************************
  Code has been changed to correct this condition.
  

Problem conclusion

Temporary fix

Comments

• APPLY the PTF.
  

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

  UI39483

Modules/Macros

• CQMBLOB  CQMCAEPT CQMCPXPT CQMICRT  CQMJAR
  

Fix information

• Fixed component name

  DB2 QUERY MONIT

• Fixed component ID

  5655E6701

Applicable component levels

• R320 PSY UI39483

     UP16/07/22 P F607

Fix is available

• Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.