Fixes are available
APAR status
Closed as program error.
Error description
When a privileged user is restricted to a domain, and another privileged user takes certain steps, the domain restriction for the restricted user might be removed. If this is the only domain to which the user was restricted, the user might have the ability to log into any domain, including default, and execute any command.
Local fix
Problem summary
An attempt to delete a domain which serves as a domain restriction on a privileged user, might allow that privileged user to access additional domains on the appliance. This issue was caused by an inconsistency in the domain removal procedure.
Problem conclusion
Fix is available in 5.0.0.11 and 6.0.0.3. For a list of the latest fix packs available, please see: http://www-01.ibm.com/support/docview.wss?uid=swg21237631
Temporary fix
Comments
APAR Information
APAR number
IC95977
Reported component name
DATAPOWER
Reported component ID
DP1234567
Reported release
500
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2013-09-16
Closed date
2013-10-21
Last modified date
2013-11-11
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
DATAPOWER
Fixed component ID
DP1234567
Applicable component levels
R500 PSY
UP
R600 PSY
UP
[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSCXUFY","label":"General"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.0.0","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
11 November 2013