RTC 3.0.1 LDAP User logged in and got ADMIN account

I have very strange situation with RTC 3.0.1 where LDAP user logging in with his account login, once in application, it shows ADMIN account when user click on his profile. And behave in all tabs like an ADMIN. The ADMIN account is disabled and does not have any license assigned to it. So get the LDAP user. However if I look a that user LDAP profile he has license and projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to clear the browser catch and tried it on several different computers. Same thing is happening. This is only for one user. I don't know what happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K

I have very strange situation with RTC 3.0.1 where LDAP user logging in with his account login, once in application, it shows ADMIN account when user click on his profile. And behave in all tabs like an ADMIN. The ADMIN account is disabled and does not have any license assigned to it. So get the LDAP user. However if I look a that user LDAP profile he has license and projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to clear the browser catch and tried it on several different computers. Same thing is happening. This is only for one user. I don't know what happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K

I have very strange situation with RTC 3.0.1 where LDAP user logging in with his account login, once in application, it shows ADMIN account when user click on his profile. And behave in all tabs like an ADMIN. The ADMIN account is disabled and does not have any license assigned to it. So get the LDAP user. However if I look a that user LDAP profile he has license and projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to clear the browser catch and tried it on several different computers. Same thing is happening. This is only for one user. I don't know what happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K

I have very strange situation with RTC 3.0.1 where LDAP user logging in with his account login, once in application, it shows ADMIN account when user click on his profile. And behave in all tabs like an ADMIN. The ADMIN account is disabled and does not have any license assigned to it. So get the LDAP user. However if I look a that user LDAP profile he has license and projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to clear the browser catch and tried it on several different computers. Same thing is happening. This is only for one user. I don't know what happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K

lisad1wrote:

I have very strange situation with RTC
3.0.1 where LDAP user logging in with his account login, once in
application, it shows ADMIN account when user click on his profile.
And behave in all tabs like an ADMIN. The ADMIN account is disabled
and does not have any license assigned to it. So get the LDAP user.
However if I look a that user LDAP profile he has license and
projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to
clear the browser catch and tried it on several different computers.
Same thing is happening. This is only for one user. I don't know what
happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is
empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K
I have encountered the same LDAP issue but I am using RTC 3.0.0 with
WAS.

It is case sensitivity issue. Once user logged in with correct case
User ID everything went ok. I changed teamserver.properties file by
adding following line:
com.ibm.team.repository.caseInsensitiveUserIds=true
Now RTC 3.0.1 is case insensitive, but IBM Rational do not recommend
it here:
http://publib.boulder.ibm.com/infocenter/clmhelp/v3r0m1/index.jsp?topic=/com.ibm.jazz.install.doc/topics/c_plan_identity_management.html

I'm hoping that is just an error in the user documentation, since I've
always understood that case-insensitive user-ID's is fully supported in
RTC when that property is set. I sent off some email to the repository
dev lead asking for clarification.

Cheers,
Geoff

On 7/25/2011 6:23 PM, mralexk wrote:
lisad1wrote:

I have very strange situation with RTC
3.0.1 where LDAP user logging in with his account login, once in
application, it shows ADMIN account when user click on his profile.
And behave in all tabs like an ADMIN. The ADMIN account is disabled
and does not have any license assigned to it. So get the LDAP user.
However if I look a that user LDAP profile he has license and
projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to
clear the browser catch and tried it on several different computers.
Same thing is happening. This is only for one user. I don't know what
happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is
empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K
I have encountered the same LDAP issue but I am using RTC 3.0.0 with
WAS.

It is case sensitivity issue. Once user logged in with correct case
User ID everything went ok. I changed teamserver.properties file by
adding following line:
com.ibm.team.repository.caseInsensitiveUserIds=true
Now RTC 3.0.1 is case insensitive, but IBM Rational do not recommend
it here:
http://publib.boulder.ibm.com/infocenter/clmhelp/v3r0m1/index.jsp?topic=/com.ibm.jazz.install.doc/topics/c_plan_identity_management.html

I have gotten confirmation from the repository dev lead that the
documentation is incorrect. I've submitted work item 172390 to get the
documentation fixed.

Cheers,
Geoff

On 7/25/2011 9:25 PM, Geoffrey Clemm wrote:

I'm hoping that is just an error in the user documentation, since I've
always understood that case-insensitive user-ID's is fully supported in
RTC when that property is set. I sent off some email to the repository
dev lead asking for clarification.

Cheers,
Geoff

On 7/25/2011 6:23 PM, mralexk wrote:
lisad1wrote:

I have very strange situation with RTC
3.0.1 where LDAP user logging in with his account login, once in
application, it shows ADMIN account when user click on his profile.
And behave in all tabs like an ADMIN. The ADMIN account is disabled
and does not have any license assigned to it. So get the LDAP user.
However if I look a that user LDAP profile he has license and
projects, tasks, etc. But user can not see these.
At first I thought it is just a catch in the browser. We tried to
clear the browser catch and tried it on several different computers.
Same thing is happening. This is only for one user. I don't know what
happened to his account and how it was assigned to admin account.

Keep in mind, I completely flashed out tomcat-users.xml file. It is
empty.

Is anyone know why this is happening and resolution for that?

Thanks,

Alex K
I have encountered the same LDAP issue but I am using RTC 3.0.0 with
WAS.

It is case sensitivity issue. Once user logged in with correct case
User ID everything went ok. I changed teamserver.properties file by
adding following line:
com.ibm.team.repository.caseInsensitiveUserIds=true
Now RTC 3.0.1 is case insensitive, but IBM Rational do not recommend
it here:
http://publib.boulder.ibm.com/infocenter/clmhelp/v3r0m1/index.jsp?topic=/com.ibm.jazz.install.doc/topics/c_plan_identity_management.html

I had this same problem today, and was able to resolve it thanks to this thread.

I do wonder what this means from a security standpoint. If a user gets switched to the ADMIN account, will he/she get a level of access that they are not supposed to have? If yes, that is a cause for concern. Thanks.