The information in this article applies to:
Product: MIM for CICS
Version: 8.x
Platforms: CICS
Issue
- A MIM for CICS inbound Web service request contains a basic authentication header in the request. The userid or password supplied is invalid when checked against the ESM (i.e. RACF). The request continues to be processed under the default CICS userid rather than CICS rejecting the request and returning a not authorized message to the Web client.
Resolution
This issue is not experienced when the CICS TCPIPSERVICE definition is set to authenticate.
To resolve this issue, the CICS TCPIPSERVICE definition that defines the HTTP port must have the security parameter .Authenticate. set to BASIC.
