APAR status
Closed as program error.
Error description
After enabling file authentication mode and creating web users with different roles: . iibAdmins role: 'read+,write+,execute+' on the integration node and on all integration servers. . iibappmg role: 'read+,write-,execute-' on the integration node and 'read+,write+,execute+' on all integration servers. . When accessing the IIB web administration console, the "iibAdmins" role members can change (clicking on edit button) user defined properties on message flows belonging to integration servers, as expected. . However users logging to webconsole beloinging to iibappmg role members cannot change the user defined properties on message flows belonging to integration servers, despite having 'read+,write+,execute+' on all integration servers. The edit button is not visible to them.
Local fix
Problem summary
**************************************************************** USERS AFFECTED: All IBM Integration Bus v10 users configuring webui authentication with different roles to Integration Node and Integration Server Platforms affected: MultiPlatform **************************************************************** PROBLEM DESCRIPTION: If admin security is enabled on integration node with file mode and if webadmin users are created with different roles as below : . iibAdmins role: 'read+,write+,execute+' on the integration node and on all integration servers. . iibappmg role: 'read+,write-,execute-' on the integration node and 'read+,write+,execute+' on all integration servers. . then while accessing the IIB web administration console, the 'iibAdmins' role members can see the Edit button to change the user defined properties on message flows belonging to integration servers, however, users belonging to 'iibappmg' role cannot see the Edit button and therefore cannot change the user defined properties on message flows, despite having 'read+,write+,execute+' on all integration servers .
Problem conclusion
WebUI now correctly displays the Edit button to all the users who have the necessary access permission of 'read+,write+,execute+' on the integration server. --------------------------------------------------------------- The fix is targeted for delivery in the following PTFs: Version Maintenance Level v10.0 10.0.0.19 The latest available maintenance can be obtained from: http://www-01.ibm.com/support/docview.wss?rs=849&uid=swg27006041 If the maintenance level is not yet available,information on its planned availability can be found on: http://www-1.ibm.com/support/docview.wss?rs=849&uid=swg27006308 ---------------------------------------------------------------
Temporary fix
Comments
APAR Information
APAR number
IT30499
Reported component name
INTEGRATION BUS
Reported component ID
5724J0540
Reported release
A00
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2019-10-04
Closed date
2019-12-23
Last modified date
2019-12-23
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
INTEGRATION BUS
Fixed component ID
5724J0540
Applicable component levels
[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSNQK6","label":"IBM Integration Bus"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"10.0","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
23 December 2019