Flashes (Alerts)
Abstract
Some WebSphere Application Server tools on Windows platform have been signed with new code signing certificates. Please note only embedded WebSphere Configuration Tool and stand-alone WebSphere Configuration Tool have been updated. There may also be issues with the Installation Manager that is used by WebSphere Application Server on Windows platform.
Content
Please refer to this blog for more information https://www.ibm.com/blogs/psirt/ibm-security-notice-regarding-two-ibm-code-signing-certificates/
We do not expect failures with the WebSphere Configuration Tools after revoking the code signing certificates, however we have resigned these tools and the interim fixes are available for download. The fixes are only needed for WebSphere Application Server Version 9.0 and Windows platform only. The following tools have been updated:
- embedded WebSphere Configuration Tool found within a WebSphere Application Server installation for Base, Network Deployment or DMZ.
- stand-alone WebSphere Configuration Tool found within a WebSphere Customization Toolbox installation
These revoked certificates may also affect your ability to use the Installation Manager to install or update WebSphere Application Server environments for versions 8.0 and above on Windows platform.
If you receive a security warning message similar to this, you will need to download a new installation manager as noted below.
For an updated Installation Manager used by IBM WebSphere Application Server:
Please refer to http://www-01.ibm.com/support/docview.wss?uid=swg21992450
For Version 9.0 Windows platform:
For embedded or stand-alone WebSphere Configuration Tool:
- Download a new Installation Manager and then Apply Interim Fix PI70608.
Change History:
14 October 2016: original document published
15 October 2016: added link to interim fix
18 October 2016: added screen capture
20 October 2016: updated wording for WCT tools
Was this topic helpful?
Document Information
Modified date:
25 September 2022
UID
swg21992361