000024417 - When saving users in Entitlements Manager user is saved in a different Administrative Group

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000024417
Applies ToRSA ClearTrust 5.5
RSA ClearTrust Entitlements Server (EServer)
RSA ClearTrust Entitlements Manager (Admin GUI)
AdminGUI 5.5.3
IssueWhen saving users in Entitlements Manager user is saved in a different Administrative Group
When viewing users in the Entitlements Manager the user is listed in a different Administrative Group than the one he/she is in.
Cause

When the Entitlements Manager lists users the "Administrative Group" field it tries to populate all Administrative Groups within ClearTrust in this drop down list. This list can be limited in two ways 1) Active Directory's MaxPageSize parameter and 2) ClearTrust's max_object_count eserver.conf parameter.

In scenario 1) the Administrative Group drop down is only populated with the user's administrative group.
In scenario 2) the drop down is populated with the user's Administrative Group and "X" number of Administrative Groups. "X" is determined by the value of the max_object_count parameter.

ResolutionThis issue has been addressed with hotfix 5.5.3.134. Contact RSA Customer Service to obtain the latest hotfix for RSA ClearTrust 5.5.3.

RSA ClearTrust Server Hotfix 5.5.3.134 (Build 2630) (08/20/2007)

Issue Fixed:

Bug 59788 - "Admin Group drop down doesn't populate all Admin Groups causing
users to be assigned to different Admin Groups"

Description:

If all the ClearTrust Administrative groups can not be fetched by the
Entitlements Manager due to restrictions on the number of objects that are
returned by the Entitlements server
(refer cleartrust.eserver.api.max_object_count), the Entitlements Manager
does not display the correct Administrative group for a user. This happens
when the list of fetched Administrative groups do not contain the
Administrative Group of the user being edited.

This hotfix resolves the above issue.

Contents:

admingui.war Entitlements Manager package
Legacy Article IDa37680

Attachments

    Outcomes