IBM Support

PM53525: LOGIN WITH A LDAP USER CREATES AN UNNECESSARY USER IN BF INCORRECTLY

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Login with a LDAP user creates an unnecessary user in BF
incorrectly.

[Reproducing steps]
In this example, Active Directory is used as LDAP.

1. On Management console, configure LDAP integration to enable
to use LDAP integration.
   LDAP configuration can be done on 'Administration' ? 'LDAP'.

2. Create user on ActiveDirectory.  User name is 'P12345'. ('P'
is upper case) Password is 'password1'.

3. Create user on BuildForge as a local user. User name is
'p12345'. ('p' is lower case) Password is 'password2'.

4. On login panel, add 'p12345' ('p' is lower case) into userid
field, and add 'password2' into password field, specify domain
which is integrated in step 1.
   Then login finishes successfully because the local user is
valid.

5. On login panel, add 'P12345' ('P' is upper case) into userid
field, and add 'password1' into password field, specify domain
which is integrated in step 1.
   Then login finishes successfully because the LDAP user is
valid.

6. Confirm user list, and you can find a new user created by
step 5 (LDAP user login) but this user name is the same as local
user name 'p12345'.

7. Logout.  Then execute step 5 again.

8. Confirm user list, and you can find the ldap user is
replicated unnecessarily.

Local fix

  • 



Problem summary


    

  • ****************************************************************
* USERS AFFECTED:                                              *
****************************************************************
* PROBLEM DESCRIPTION:                                         *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
Login with a LDAP user creates an unnecessary user in BF
incorrectly.

    



Problem conclusion


    

  • The issue is now fixed.  LDAP is treated as case-insensitive
(i.e., all lowercase), so case issues involving usernames no
longer occur.

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PM53525
    • 

  • Reported component name
    BUILD FORGE EE
    • 

  • Reported component ID
    5724S2701
    • 

  • Reported release
    713
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt
    • 

  • Submitted date
    2011-12-05
    • 

  • Closed date
    2012-02-24
    • 

  • Last modified date
    2012-02-24
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    BUILD FORGE EE
    • 

  • Fixed component ID
    5724S2701
    • 



Applicable component levels


    

  • R713  PSN
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSB2MV","label":"Rational Build Forge"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.1.3","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            24 February 2012
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback