000021678 - When RSA ClearTrust is configured to bind to iPlanet  a Runtime API (RTAPI) program can successfully authenticate a user without providing a password

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021678
Applies ToRSA ClearTrust 5.0.1
RSA ClearTrust Authorization Server (AServer)
RSA ClearTrust 5.0.1 Runtime API
iPlanet 5.1 requiring a bind connection to authenticate users
IssueWhen RSA ClearTrust is configured to bind to iPlanet, a Runtime API (RTAPI) program can successfully authenticate a user without providing a password
Successful authentication VALID_USER returned when blank password is provided
ResolutionThis issue is resolved in hot fix 5.0.1.131 for RSA ClearTrust Servers. Contact RSA Security Customer Support to request this hot fix, or request the latest fix level (which is cumulative, and contains fixes from previous fix levels). Review the provided Readme file for installation instructions.
Legacy Article IDa24288

Attachments

    Outcomes