IT34601: COMMA IN USER CN CAUSES WEBADMIN LDAP AUTHORIZATION FAILURE.

APAR status

• Closed as program error.

Error description

• If you have comma in the user CN
  
  (eg: 'cn=ray\\,rex,dc=example,dc=com'), the ldap authorization
  of webadmin always fails.
  

Local fix

Problem summary

• ****************************************************************
  USERS AFFECTED:
  All Users of App Connect Enterprise V11 having LDAP based
  Administration security.
  
  
  Platforms affected:
  MultiPlatform
  
  ****************************************************************
  PROBLEM DESCRIPTION:
  <span style="background-color:rgb(255, 255, 255)">If LDAP user
  have a comma in the CN</span><span
  style="background-color:rgb(255, 255, 255)"> </span><span
  style="background-color:rgb(255, 255, 255)">(eg:
  'cn=ray\\,rex,dc=example,dc=com'), the ACE LDAP authorization
  check is seen failing. As a result, the user will not be able to
  connect to the remote integration node from the toolkit or login
  to the webadmin interface from the browser. </span>
  

Problem conclusion

• The product no longer fails to authorize users having special
  characters in their CN.
  
  ---------------------------------------------------------------
  The fix is targeted for delivery in the following PTFs:
  
  Version    Maintenance Level
  v11.0      11.0.0.11
  
  The latest available maintenance can be obtained from:
  http://www-01.ibm.com/support/docview.wss?rs=849&uid=swg27006041
  
  If the maintenance level is not yet available,information on
  its planned availability can be found on:
  http://www-1.ibm.com/support/docview.wss?rs=849&uid=swg27006308
  ---------------------------------------------------------------
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Fix information

• Fixed component name

  APP CONNECT ENT

• Fixed component ID

  5724J0550

Applicable component levels