Loading...

XML

Word

Printable

Type: Bug
Resolution: Not a Bug
Priority: Critical
Fix Version/s: None
Affects Version/s: AMQ 7.11.0.GA
Component/s: broker-core
Labels:
None

Blocked:
False
Blocked Reason:
None
Ready:
False
GSS Priority:
Intelligence Requested:
Market:

Severity:
Critical

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

The JIRA ~~ENTMQBR-7118~~ has been fixed with patch 3226 and on AMQ 7.11.0 and onwards. However, the fix works with Apache DS and Oracle Directory Server, but it does not work with Microsoft Active Directory specifically.

When running the tests mentioned in the JIRA ~~ENTMQBR-7118~~, the following error was thrown:

2023-06-01 15:59:57,917 [AUDIT](Thread-39878 (ActiveMQ-server-org.apache.activemq.artemis.core.server.impl.ActiveMQServerImpl$6@6134ac4a)) AMQ601264: User user6(team6)@127.0.0.1:52344 gets security check failure: ActiveMQSecurityException[errorType=SECURITY_EXCEPTION message=AMQ229032: User: user6 does not have permission='CREATE_ADDRESS' on address project6.test]

Although the team6 has been configured to have "admin", "read" and "write" permission on the destination "project6.$".

is related to

ENTMQBR-7118 LegacyLDAPSecuritySettingPlugin allows new user to access new destinations if a default wildcard address '$' exists in LDAP

Closed

relates to

ENTMQBR-5429 LegacyLDAPSecuritySettingPlugin listener throws AMQ224086 with Active Directory

Closed

ENTMQBR-8297 Caching Issue with Pooling Enabled for LDAP

Closed

Assignee:: Justin Bertram

Reporter:: Joe Luo

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2023/10/02 10:22 AM

Updated:: 2023/10/11 3:51 PM

Resolved:: 2023/10/11 3:51 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates