APAR status
Closed as program error.
Error description
Error Message: When running Kinit with command line options like -f,-F etc, the returned credential from KDC is not correct. This is because the KrbAsReq request sent to KDC doesn't contain the flags set by the user at command line, this in turn causes that the returned credential doesn't have the expected flags inside.This issue only happens in Java 7.0. . Stack Trace: .
Local fix
Problem summary
The root cause of the issue is that the command line options are not processed when generating KrbAsReq.
Problem conclusion
This APAR will be fixed in the following Java Releases: 7 SR7 FP1 (7.0.7.1) 7 R1 SR1 FP1 (7.1.1.1) . The fix added the options to KrbAsReq.The associated Austin CMVC defect is 115483.The associated RTC Problem Report is 65385.Platform affected: All platforms.JVMs affected: 7.0, 7.27.Jars affected: ibmjgssprovider.jar. Build level is 20140507b.
Temporary fix
Comments
APAR Information
APAR number
IV60519
Reported component name
SECURITY
Reported component ID
620700125
Reported release
260
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2014-05-14
Closed date
2014-05-14
Last modified date
2014-07-18
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
R260 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"260","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
07 December 2020