IGNITe/400 Mailing List Archive Entry
Itzy,

The HTTP server can change user-ids depending upon how you have it
configured (V4R3). By default, all requests should be coming in under
QTMHHTTP. It switches to QTMHHTP1 (or a user-id of your choice or the
client's AS/400 user-id) depending upon the config settings.

We set PUBLIC *EXCLUDE on all objects on the machine and limit QTMHHTTP to
*R for IFS objects and QTMHHTP1 to *RX on IFS objects. There are some
objects where QTMHHTP1 and QTMHHTTP must have write authorities.

The docs are a real pain no?

Bob C.

________________________________________________
 
Visit for all of your AS/400 Internet
Information Needs.


-----Original Message-----
ign_list@ignite400.org [mailto:ign_list@ignite400.org]
Sent: Sunday, November 29, 1998 9:22 AM
To: IGNITE400 MEMBERS LIST Mailing List
RE: IBM ICS Web server - Authentication


isabo@boscom.com (Itzy Sabo)

I just checked on the system which works:

The validation list has
QTMHHTP1 *ALL
PUBLIC *EXCLUDE

The library which contains it is also
QTMHHTP1 *ALL
PUBLIC *EXCLUDE

I now wonder why the validation works at all, if the server runs under
QTMHHTTP and not QTMHHTP1. As I understand it, QTMHHTP1 is used only for
CGI, e.g. to access database files using Net.Data.

I will try and open up the library on the non-working system to QTMHHTTP and
see what happens.

Regards,

Itzy Sabo
OppoSite Software, a division of Better Online Solutions
isabo@boscom.com
http://www.bosweb.com

€The AS/400 combines the stability and power of Unix with the ease of
use of Windows NT.€


-----Original Message-----
ign_list@ignite400.org [mailto:ign_list@ignite400.org]
Sent: Sunday, 29 November, 1998 6:50 PM
To: IGNITE400 MEMBERS LIST Mailing List
RE: IBM ICS Web server - Authentication


isabo@boscom.com (Itzy Sabo)

Thanks for the suggestion -- although I didn't copy the validation list -- I
built a new one. Just to make sure, I gave the validation file PUBLIC *ALL
authorities, just to see if it would make a difference. Guess what -- no
difference.

Regards,

Itzy Sabo
OppoSite Software, a division of Better Online Solutions
isabo@boscom.com
http://www.bosweb.com

€The AS/400 combines the stability and power of Unix with the ease of
use of Windows NT.€


-----Original Message-----
ign_list@ignite400.org [mailto:ign_list@ignite400.org]
Sent: Tuesday, 10 November, 1998 7:44 PM
To: IGNITE400 MEMBERS LIST Mailing List
RE: IBM ICS Web server - Authentication


Check the authority on the validation lists. The user running the web
server (usually QTMHHTTP) must have authority to it. This authority can be
lost when restoring the object to another system.

Rod Davis





ign_list@ignite400.org (IGNITE400 MEMBERS LIST) on 11/10/98 09:18:43 AM

Please respond to ign_list@ignite400.org

To: ign_list@ignite400.org (IGNITE400 MEMBERS LIST Mailing List)
cc: (bcc: Rod L Davis/RyTE/US)
RE: IBM ICS Web server - Authentication




isabo@boscom.com (Itzy Sabo)

Me too. I've just duplicated a functioning system onto another 2 machines
running V4R2 and V4R3 and the validation lists are not being read by the
server -- everybody is denied access.

Help!!!

Regards,

Itzy Sabo
OppoSite Software, a division of Better Online Solutions
isabo@boscom.com
http://www.bosweb.com

--- IGNITE400 MEMBERS LIST
What AS/400 IP services do you run?

http://ignite400.org/member/html/survey.htm

--- IGNITE400 MEMBERS LIST
To unsubscribe from this great list send an email to
ign_list@ignite400.org with unsubscribe as the subject.


Return to the Mailing List Archive Page
Click to return to home page
© Copyright 1999 by IGNITe/400
This page last updated Sat, 21 Aug 1999 16:41:00