APAR status
Closed as program error.
Error description
If the password hash string on the LDAP server is about 128 bytes or larger, secldapclntd may fail to handle that large hash string. As a consequence the affected LDAP based user fails.
Local fix
Avoid a setup on the LDAP server which comes up with password hash strings larger then about 128 bytes.
Problem summary
LDAP users with long password hash may be unable to validate account or log in.
Problem conclusion
Data structure for password hash have been increased to the documented max size (255). This keeps the basic logic of the function while ensuring supported encryptions do not fail.
Temporary fix
Comments
APAR Information
APAR number
IV83076
Reported component name
AIX V7.1
Reported component ID
5765H4000
Reported release
710
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-03-28
Closed date
2016-04-12
Last modified date
2017-01-20
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
IV83875 IV83940 IV84018 IV88052
Fix information
Fixed component name
AIX V7.1
Fixed component ID
5765H4000
Applicable component levels
R710 PSY U872335
UP17/01/19 I 1000
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SG11R"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"710","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}}]
Document Information
Modified date:
20 April 2022