IJ22075: WEBRENDERER SWING IN THE TEPS NEEDS TO BE UPGRADED TO 6.2

IBM Tivoli Monitoring 6.3.0 Fix Pack 7 Service Pack 5 (6.3.0.7-TIV-ITM-SP0005)

APAR status

• Closed as program error.

Error description

• *************************** APAR Template
  *****************************
  Please open an apar with the
  following severity and information:
  Severity: 2
  Approver: TL
  
  
  Enter the L2 engineer who did the recreate or "None":
  L2
  engineer: TW
  Compid: 5724C04PS Tivoli Enterprise Portal Server
  
  Abstract: WebRenderer Swing in the TEPS needs to be upgraded
  to 6.2
  
  Environment:
  
  Problem Description:
  When setting the
  TEP Client to use TLS 1.2 only, it gets an error when trying to
  use the EHS links, ie:
  https://teps_server:15201/classes/candle/
  fw/resources/help/info.htm
  
  Comment from the WebRenderer Swing
  team:
  "WebRenderer Swing versions 6.0.x are based on the same
  Mozilla base as Firefox 4.0. This version of Firefox did not
  support TLS 1.1, and it was not introduced until Firefox 23. It
  is not possible to use TLS 1.1 or 1.2 in WebRenderer Swing
  6.0.x, and TLS 1.0 is the highest level available.
  
  However,
  support for TLS 1.1 and 1.2 was introduced into WebRenderer
  Swing 6.2, and is supported in the latest 6.3 release. It will
  be necessary to update WebRenderer to the latest version in
  order to utilize TLS 1.2."
  
  Currently, the TEP is packaged with
  v6.0.7 of the WebRenderer component. So an uplift of this
  component is required to resolve this issue.
  
  Detailed
  Recreation Procedure:
  Set the environment to use TLS
  1.2
  Specifically this variable added to the tep.jnlp file (and
  using https and 15201 port)
  <property
  name="jnlp.tep.sslcontext.protocol" value="TLSv1.2"/>
  Then
  click a link that brings up a link to the help server.
  
  
  Related Files and Output:
  
  
  ************************ End of
  APAR Template *************************
  

Local fix

• Do not set the TEP Client to use TLS 1.2 only.
  

Problem summary

• EMBEDDED BROWSER SUPPORT LIBRARY IN TEP NEEDS TO BE UPGRADED TO
  MOST
  CURRENT SUPPORT LEVELS.
  
  
  The TEP component is packaged with an embedded library that
  supports the TEP Browser view.  The
  Browser view is used in workspaces, online / contextual help
  system, and secure certificate processing.
  The version level of this library needs to be updated to support
  secure communications based on TLSv1.1
  and TLSv1.2 encryption protocols.
  

Problem conclusion

• Embedded browser support library has been updated to most
  current support levels, which includes
  support for the TLSv1.2 and TLSv1.2 encryption protocols.
  
  
  The fix for this APAR is contained in the following maintenance
  packages:
  
     | service pack | 6.3.0.7-TIV-ITM-SP0005
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Fix information

• Fixed component name

  TEPS

• Fixed component ID

  5724C04PS

Applicable component levels