Top Secret Unable to login to z/OSMF under z/OS 2.5 enabling JSON Web Token (JWT)
search cancel

Top Secret Unable to login to z/OSMF under z/OS 2.5 enabling JSON Web Token (JWT)

book

Article ID: 248225

calendar_today

Updated On:

Products

Top Secret

Issue/Introduction

Upgraded to z/OS 2.5 under both TSS and ACF2,  unable to login to either lpar. Login under z/OS 2.4 is fine.

Receive message

To log into z/OSMF, enter a valid z/OS user ID and password. Your account might be locked after too many incorrect log-in attempts.

and in addition, IZUSVR1 log shows:

14.22.15 STC16282  IYUCM0014E: The user ID <acid> is either not defined to z/OS
   883             not permitted to z/OSMF.
   883
   883             com.ibm.zoszmf.resourcemgmt.servlet.BootstrapListener.initializeSecuri
   883             tyAdmin: Error attempting to update Resource Management for the
   883             CLOUD_SEC_ADMIN specified in parmlib.

 No errors are shown in the TSSUTIL Violation Report.

 

Environment

Release : 16.0

Component : Top Secret for z/OS

Resolution

Problem was not with z/OSMF or z/OS,  enabling JSON Web Token report as per IBM instructions. Once the supporter removed the server-override.xml file, z/OSMF went back to working normally. 

 JSON Web Token report as per IBM instructions.

https://www.ibm.com/docs/en/zos/2.4.0?topic=configurations-enabling-json-web-token-support