467,185 Members | 1,226 Online
Bytes | Developer Community
Ask Question

Home New Posts Topics Members FAQ

Post your question to a community of 467,185 developers. It's quick & easy.

v8.1 authentication question

aj
DB2 WSE 8.1 FP 5
Red Hat Linux AS 2.1

I have the DB2 development client installed on my Win2000 PC,
and have catalogued a remote node & database on my PC.

My DB2 server across the n/w has the following DBM CFG settings:
Database manager authentication (AUTHENTICATION) = SERVER
Cataloging allowed without authority (CATALOG_NOAUTH) = NO
Trusted client authentication (TRUST_CLNTAUTH) = CLIENT
Trust all clients (TRUST_ALLCLNTS) = YES
Bypass federated authentication (FED_NOAUTH) = YES

Using the CLP on my PC, as long as I specify a valid username and
ANY password, I can successfully connect to that remote database.
In other words:
db2 => connect to <db> user <validuser> using <ANY OLD THING>
connects just fine.

Why is this? My DB server has AUTHENTICATION=SERVER, so TRUST_CLNTAUTH
and TRUST_ALLCLNTS should be completely ignored. Why can I connect
using a valid username and **any** bogus password?

I don't believe I was able to do this under v7 - has authentication
behavior changed under v8? Isn't it true that client authentication
settings can never override server authentication settings?

Any help appreciated.

aj
Nov 12 '05 #1
  • viewed: 978
Share:

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

8 posts views Thread by Bob Everland | last post: by
18 posts views Thread by Rippo | last post: by
6 posts views Thread by Ming Zhang | last post: by
2 posts views Thread by jimcleve@aol.com | last post: by
18 posts views Thread by troywalker@gmail.com | last post: by
4 posts views Thread by Bjorn Sagbakken | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.