| |
|
RSS Feed - WebSphere MQ Support
|
RSS Feed - Message Broker Support
|
  |
|
| IIB v10 SecurityPEP Node |
« View previous topic :: View next topic » |
| Author |
Message
|
| StrQST400 |
 Posted: Thu Jun 06, 2019 5:54 am Post subject: IIB v10 SecurityPEP Node |
 |
|
Novice
Joined: 24 Apr 2014
Posts: 12
|
IIB:
Version: '10.0.0.14'
Product: 'IBM Integration Bus'
Build Number: '634'
IE02 level: 'ie02-L20140415-1143'
IB Level: 'ib1000-L180920.634_P'
Server level: 'S1000-L180919.10822'
Toolkit level:'20180920-0858'
Running on AIX: 7100-04-06-1806
We have a flow that verifies a X.509 certificate's DN against an LDAP to authorize the server that presents the certificate. 2 servers, one that presents a SHA-1 certificate and one that presents a SHA-2 certificate, both hit the same flow. The SHA-1 certificate validates against the LDAP without any issue, but the SHA-2 certificate does not. Dumping the IdentitySource Token seems to confirm that it is present in both cases.
An IBM PMR is open, but I am checking to see if anybody has experienced any such weirdness with the SecurityPEP node.
A search of the support site does mention an old fix ( https://www-01.ibm.com/support/docview.wss?uid=swg1IT08119 ) but that does not seem to be the problem here.
Thanks in advance. |
|
| Back to top |
|
 |
| fjb_saper |
| Posted: Thu Jun 06, 2019 8:51 pm Post subject: Re: IIB v10 SecurityPEP Node |
|
|
Grand High Poobah
Joined: 18 Nov 2003
Posts: 20756
Location: LI,NY
|
| StrQST400 wrote: |
IIB:
Version: '10.0.0.14'
Product: 'IBM Integration Bus'
Build Number: '634'
IE02 level: 'ie02-L20140415-1143'
IB Level: 'ib1000-L180920.634_P'
Server level: 'S1000-L180919.10822'
Toolkit level:'20180920-0858'
Running on AIX: 7100-04-06-1806
We have a flow that verifies a X.509 certificate's DN against an LDAP to authorize the server that presents the certificate. 2 servers, one that presents a SHA-1 certificate and one that presents a SHA-2 certificate, both hit the same flow. The SHA-1 certificate validates against the LDAP without any issue, but the SHA-2 certificate does not. Dumping the IdentitySource Token seems to confirm that it is present in both cases.
An IBM PMR is open, but I am checking to see if anybody has experienced any such weirdness with the SecurityPEP node.
A search of the support site does mention an old fix ( https://www-01.ibm.com/support/docview.wss?uid=swg1IT08119 ) but that does not seem to be the problem here.
Thanks in advance. |
Depends on the effective level of your integration node... 
_________________
MQ & Broker admin |
|
| Back to top |
|
|
|
|
|
| |
|
Page 1 of 1 |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
|
