IBM Support

PH15965: INTERMITTENT SECJ0129E AFTER UPGRADE TO 9.0.0.10 or 8.5.5.14

Fixes are available

9.0.5.2: WebSphere Application Server traditional Version 9.0.5 Fix Pack 2
8.5.5.17: WebSphere Application Server V8.5.5 Fix Pack 17
9.0.5.3: WebSphere Application Server traditional Version 9.0.5 Fix Pack 3

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • After upgrading from WAS 9.0.0.5 to 9.0.0.10 customer gets
intermittent SECJ0129E after a certain amount of time and reques
ts. The error is not visible if tracing is on

Local fix

  • 



Problem summary


    

  • ****************************************************************
* USERS AFFECTED:  All users of IBM WebSphere Application      *
*                  Server for z/OS V8.5.5 and V9.0             *
****************************************************************
* PROBLEM DESCRIPTION: After upgrading to 8.5.5.14 or          *
*                      9.0.0.8 users may see SECJ0129E         *
*                      authorization errors.                   *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
PI88044 adding callback handling that forcibly deletes SAF
credentials. During extreme workloads it could result in
collisions between threads doing the delete and threads
performing authorization checks for the same user.
The function provided by PI88044 may still be desirable for
some customers. This APAR restores previous default behavior.
It also allows customers to benefit from PI88044 function by
setting security custom property:
com.ibm.websphere.security.platform.cache.eviction=true

    



Problem conclusion


    

  • Forcing SAF credential deletes will no longer occur, unless
the following property is set:
com.ibm.websphere.security.platform.cache.eviction=true

The fix for this APAR is currently targeted for inclusion in
fix pack 8.5.5.17 and 9.0.5.2.  Please refer to the Recommended
Updates
page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PH15965
    • 

  • Reported component name
    WEBSPHERE FOR Z
    • 

  • Reported component ID
    5655I3500
    • 

  • Reported release
    900
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2019-08-22
    • 

  • Closed date
    2019-09-12
    • 

  • Last modified date
    2019-09-12
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    WEBSPHERE FOR Z
    • 

  • Fixed component ID
    5655I3500
    • 



Applicable component levels


    

  • R900  PSY
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SS7K4U","label":"WebSphere Application Server for z\/OS"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"900","Line of Business":{"code":"LOB45","label":"Automation"}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            17 October 2021
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback