Fixes are available
Rational ClearCase Fix Pack 04 (8.0.0.4) for 8.0
Rational ClearCase Fix Pack 11 (8.0.0.11) for 8.0
Rational ClearCase Fix Pack 12 (8.0.0.12) for 8.0
Rational ClearCase Fix Pack 13 (8.0.0.13) for 8.0
Rational ClearCase Fix Pack 14 (8.0.0.14) for 8.0
Rational ClearCase Fix Pack 15 (8.0.0.15) for 8.0
Rational ClearCase Fix Pack 16 (8.0.0.16) for 8.0
Rational ClearCase Fix Pack 17 (8.0.0.17) for 8.0
Rational ClearCase Fix Pack 18 (8.0.0.18) for 8.0
Rational ClearCase Fix Pack 19 (8.0.0.19) for 8.0
Rational ClearCase Fix Pack 20 (8.0.0.20) for 8.0
Rational ClearCase Fix Pack 21 (8.0.0.21) for 8.0
APAR status
Closed as program error.
Error description
In IBM Rational ClearCase Remote Client (CCRC) WAN Server 8.0.x, failed login attempts create a session entry which is not fully removed until 5 minutes later. This can be caused by an invalid username or password. As a result, a large number of such failed logins in a short period of time may cause CCRC WAN Server to reach the ccrcMaxSessionsOverall limit (200 by default), preventing other legitimate users from logging in. Steps to reproduce the issue: 1) Edit server.conf to set the ccrcMaxSessionsOverall value to an artificially low number, such as 5. 2) In a web browser, launch http://host/ccrc/admin/settings to confirm the setting takes immediate effect. 3) In IBM Rational ClearTeam Explorer (CTE), attempt to login 6 consecutive times with 'invaliduseraccount' and any password. 4) Attempt to login with a valid user account. A failure will occur. The SystemOut.log on the CCRC WAN Server should confirm the cause of the failure with errors similar to the following: --- CRMSV6007E: CCRC Server Login failed for user 'invaliduseraccount'. CCRC Server Login failed for user 'invaliduseraccount'. CRMSV6007E: CCRC Server Login failed for user 'invaliduseraccount'. CCRC Server Login failed for user 'invaliduseraccount'. CRMSV6007E: CCRC Server Login failed for user 'invaliduseraccount'. CCRC Server Login failed for user 'invaliduseraccount'. CRMSV6007E: CCRC Server Login failed for user 'invaliduseraccount'. CCRC Server Login failed for user 'invaliduseraccount'. CRMSV6007E: CCRC Server Login failed for user 'invaliduseraccount'. CCRC Server Login failed for user 'invaliduseraccount'. CRMSV6007E: CCRC Server Login failed for user 'invaliduseraccount'. CCRC Server Login failed for user 'invaliduseraccount'. SRVE0293E: [Servlet Error]-[ccrc]: com.ibm.ws.webcontainer.webapp.WebAppErrorReport: CCRC WAN Server has reached maximum session capacity --- Workaround: Request the user identified in the error close out ClearTeam Explorer, correct their login credentials, and relogin. Stop and restart CCRC WAN Server to clear out all existing sessions if waiting for the 5 minute expiration to occur is not feasible.
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: * **************************************************************** * PROBLEM DESCRIPTION: * **************************************************************** * RECOMMENDATION: * **************************************************************** A large number of such failed CCRC login attempts in a short period of time may cause CCRC WAN Server to reach the ccrcMaxSessionsOverall limit (200 by default), preventing other legitimate users from logging in.
Problem conclusion
A fix is available in ClearCase version 8.0.0.4
Temporary fix
Comments
APAR Information
APAR number
PM64329
Reported component name
CLEARCASE WIN
Reported component ID
5724G2900
Reported release
800
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2012-05-09
Closed date
2012-09-27
Last modified date
2012-09-27
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
CLEARCASE WIN
Fixed component ID
5724G2900
Applicable component levels
R800 PSN
UP
Document Information
Modified date:
27 September 2012