IBM Support

IJ18609: ACTIVE DIRECTORY AUTHENTICATION LOGIN FAILS AFTER A FAILOVER TO HIGH AVAILABILITY SECONDARY CONSOLE

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as Permanent restriction.

Error description

  • It has been identifed that in some instances QRadar Active
    Directory authentication can fail after a failover to a high
    availability secondary console has occurred.
    In these specific instances of Active Directory failure to
    login, the /etc/krb5.conf file has been emptied out, and is a 0
    byte file.
    

Local fix

  • Contact Support for a possible workaround that might address
    this issue in some instances.
    

Problem summary

  • We will suggest that customers use the LDAP authentication
    module instead.
    

Problem conclusion

  • We will suggest that customers use the LDAP authentication
    module instead.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IJ18609

  • Reported component name

    QRADAR SOFTWARE

  • Reported component ID

    5725QRDSW

  • Reported release

    731

  • Status

    CLOSED PRS

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2019-08-27

  • Closed date

    2020-07-13

  • Last modified date

    2020-07-13

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

Applicable component levels

[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSBQAC","label":"IBM QRadar SIEM"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"731"}]

Document Information

Modified date:
14 July 2020