After enabling ssl for connections to db2 we want to register (catalog) database in Microsoft active directory (LDAP) to provide it to all user.
But "db2 register db2 server in ldap as DATABASE protocol tcpip hostname hosta svcename 50005 SECURITY SSL remote hosta instance dbinst2 ostype Linux"
Fails with "SQL3263N The protocol type is not supported".
Workaround would be local catalog tcpip node with security ssl and database on each client, but we normaly use central catalog information in MS AD, so this would be a complete return to the past before LDAP-catalog.
CaseID TS003353378 says
•REGISTER DB2 SERVER IN LDAP & CATALOG LDAP NODE
•Do not support Db2 server using TLS
•Do not support communicating with LDAP over TLS
•You will need to catalog the TCPIP node directly on each client
|Who would benefit from this IDEA?||All clients using ssl-connections.|
How should it work?
db2 register db2 server in ldap as DATABASE protocol tcpip hostname hosta svcename 50005 SECURITY SSL remote hosta instance dbinst2 ostype Linux
|Priority Justification||Important functionality and requirement for using ssl security for Db2 connections|
|IBM's success depends on gathering feedback from customers like yourself. Aha Ideas Portal is the third party tool through which IBM Offering Managers gather feedback from customers such as yourself.|
|IBM is a global organization with business processes, management structures, technical systems and service provider networks that cross borders. As such, the information collected through Aha Ideas Portal (Customer Name, Customer Email Address) will be stored by them in the United States, and handled only as per IBM's instructions and policies. Your data (Name and Email Address) will NOT be shared with other IBM customers.|
|In order to safeguard your information in Aha, do not leave your workstation unattended while using this application, log off after using it, and print only if necessary. If you need to make a hardcopy, remember to pick up the print-out immediately, keep it under lock, and destroy it immediately when no longer needed.|
|NOTICE TO EU RESIDENTS: per EU Data Protection Policy, if you wish to remove your personal information from the IBM ideas portal, please login to the ideas portal using your previously registered information then change your email to "email@example.com" and first name to "anonymous" and last name to "anonymous". This will ensure that IBM will not send any emails to you about all idea submissions|