Connections Version:
HCL Connections 8 CR9
Operating System:
Red Hat Enterprise Linux 8
Problem/Query:
He guys,
I wanted to point out a blog article that I just published on my blog: WebSphere 8.5.5 FP27 & HCL Connections… beware! – Martijn’s Blog
If you plan on installing Fix pack 27 for WebSphere 8.5.5 on your Connections environment, this will be a good one to check out. Oficially, FP27 is not on the System Requirements list for Cnx 8.0 CR9, but I expect it to be for CR10 or CR11. HCL will have some work to do regarding this fixpack though, as you can read in the blog. I’m wondering what the HCL Connections devs think about this and if they have any insights?
3 Likes
This was introduced with PH58798 and is a pain, so this is already enabled when you install interim fixes on top of FP26. You get it running for an already installed environment, but install a new WebSphere cell fails in my tests.
One issue is that WebSphere uses IP to connect to a node, and there are no SAN parameters set in the WAS certificates created by DMGR. I am not sure if this already works as IBM wants it to work, but as you wrote, the only workaround is disabling the verification.
2 Likes
Thank you for noting this and to all for the discussion thus far. We have been evaluating your feedback internally within HCLSoftware and will share further guidance as soon as we can.
For reference, the most current version of the system requirements can be found here: System requirements for HCL Connections 8.0 CR3 and above - HCL Connections 8.0 CR10 Help Center
Thank you,
Michael Montani
HCLSoftware Support
1 Like
Thanks again for the discussion in this thread. We have updated the following security bulletin with additional guidance. Please see the “Remediation/fixes” section for further information.
Security Bulletin: Vulnerability in IBM WebSphere Application Server, contained in a download package from HCL Connections (CVE-2023-50315)
Thank you,
Michael Montani
HCLSoftware Support
1 Like