APAR status
Closed as new function.
Error description
Upgrade IBM LDAP SDK to enable TLSv13
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: All users of IBM HTTP Server with LDAP * * authentication/authorization * **************************************************************** * PROBLEM DESCRIPTION: Outbound LDAP connections cannot use * * TLSv13 * **************************************************************** * RECOMMENDATION: * **************************************************************** The embedded IBM LDAP SDK does not support TLSv13, and there is no configuration mechanism to choose the TLS protocol.
Problem conclusion
The embedded LDAP SDK was updated to 10.0.1 on Linux (all but PPC big-endian) Windows, and AIX. The LDAPSSLProtocol directive was added to control the list of enabled protocols, defaulting to "TLS12,TLS13" on the updated platforms. There is no change to zOS where LDAP TLS configuration must be done with zOS LDAP and System SSL environment variables. The fix for this APAR is targeted for inclusion in IBM HTTP Server fix pack 9.0.5.17. For more information, see 'Recommended Updates for WebSphere Application Server': https://www.ibm.com/support/pages/node/715553
Temporary fix
Comments
APAR Information
APAR number
PH55900
Reported component name
IBM HTTP SERVER
Reported component ID
5724J0801
Reported release
900
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2023-07-20
Closed date
2023-08-30
Last modified date
2023-08-30
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
IBM HTTP SERVER
Fixed component ID
5724J0801
Applicable component levels
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTJ","label":"IBM HTTP Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"9.0","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
31 August 2023