WebSphere custom TAI – Doing SSO the right way

WebSphere TAI – Doing SSO the right way Hi all, one thing on my “to do blog posts” list is to write something about WebSphere TAI. A great way to introduce Single-Sign On between different systems. What is TAI? WebSphere TAI means “Trust Association Interceptor” WebSphere TAI is a well-known and proven security concept in […]

The clever way to create IBM Connections users – GIS UserManager

The clever way to create IBM Connections users – GIS UserManager Hi, with this blog post I would like to promote a cool IBM Connections addon – “GIS Usermanager”. GIS UserManager is THE tool to create and maintain users for many IBM powered applications. There is no alternative solution available on market with such a […]

DB2 Instance autostart does not work on SLES 12 / RHEL 7

Hi all, I had to fight with a customer environment on SLES 12 where the db2 instances did not start automatically when starting the operation system. db2iauto -on db2inst1 was executed but the instance did not come up! The problem is related to the DB2 fault monitor that is not started automatically on system start. […]

Automatic modification of WebSphere Plugin (Primary / BackupServers) to maintain two-line concept

Automatic modification of WebSphere Plugin (Primary / BackupServers) to maintain two-line concept Hi, in larger highly available environments you may know an architectural concept called “two-line approach”. Behind a load balancer you have two lines that can be shutdown / started independent from each other. This is very practical if you need to do maintenance […]

WebSphere Portal – Change WCM AD Group permissions using memberFixer

WebSphere Portal – Change WCM AD Group permissions using memberFixer Hi, this time again WebSphere Portal stuff on this blog 😉 One of our customers uses AD Groups to control access to WCM content. Since there was a change in their AD hierarchy they asked me to replace all old AD Groups with new ones. […]

WebSphere Portal – runtime database permissions lost after running “run-wcm-admin-task-reset-event-log”

WebSphere Portal – runtime database permissions lost after running “run-wcm-admin-task-reset-event-log” Hi all, if you`re using WebSphere Portal and you`ve configured a database runtime user (with restricted access rights) – what you hopefully have 😉 this might be interesting for you. When importing WCM content several times, the ConfigEngine Task “run-wcm-admin-task-reset-event-log” might be helpful because simply […]

Vulnerability Apache common-collections (CVE-2015-7450) reloaded – Fixes for IBM Connections and WebSphere Portal available

Vulnerability Apache common-collections (CVE-2015-7450) reloaded – Fixes for IBM Connections and WebSphere Portal available Hi all, two weeks ago IBM released Fixes for the apache common-collections security vulnerability specific for WebSphere Applications Server (I wrote a blog post about this just two weeks ago –> here). Last week additional Fixes for WebSphere Portal and IBM […]

WebSphere Portal DDC – “List of pending network invitations” not working

WebSphere Portal DDC – “List of pending network invitations” not working Hi all, last week I had to deal with a problem in WebSphere Portal 8.5 when using DDC to display IBM Connections content. There is a DDC component that allows retrieving profiles based content. We used this to offer a “invite to network” link […]

Critical vulnerability in WebSphere Application Server (CVE-2015-7450)

Critical vulnerability in WebSphere Application Server (CVE-2015-7450) Hi all, as you maybe already heard, a critical vulnerability has been detected in J2EE application servers such as (WebSphere Application Server, JBoss, WebLogic …). This security issue describes a problem that comes into play when Java code uses deserialization of objects (a fundamental feature of Java object […]

HTTP Outbound authentication via SAML

HTTP Outbound authentication via SAML (ADFS Server) Hi all, this time I had to deal with a real administrative challenge: Enable WebSphere Portal to display IBM Connections content using IC portlets and authenticate HTTP Outbound calls using SAML. WebSphere Portal can load content from external sources using a secure HTTP Outbound proxy (aka. Ajax Proxy). […]