fighting for truth, justice, and a kick-butt lotus notes experience.

IBM Technote: Apple iOS 12 Mail, Calendar and Contacts fail to sync if HTTP Basic Authentication is not properly configured

Detlev Poettgen  September 18 2018 06:40:25 PM
IBM published a new Technote today, regarding issues with Traveler and iOS 12 devices, when HTTP Basic Authentification is not properly configured

Image:IBM Technote: Apple iOS 12 Mail, Calendar and Contacts fail to sync if HTTP Basic Authentication is not properly configured


Apple iOS 12 Mail, Calendar and Contacts fail to sync if HTTP Basic Authentication is not properly configured


Flashes (Alerts)


Abstract


Starting with Apple iOS 12, native Mail, Calendar and Contacts applications fail to sync if HTTP Basic Authentication is not properly configured.

Content


Starting with Apple iOS 12, native Mail, Calendar and Contacts applications fail to sync if HTTP Basic Authentication is not properly configured.

Prior to Apple iOS 12, the device would send the HTTP Authorization with the user's credentials on the first request.  As long as the credentials were correct, the device would not get challenged for credentials and it would not matter if the challenge was an HTTP 401 response (correct) or not (such as an HTTP 200  form login HTML response).  

But starting with Apple iOS 12, the device no longer sends the HTTP Authorization header on the initial request which means that it will always get a challenge response for the user's credentials; if this challenge is an HTTP 401 (basic authentication), the devices should continue to work, but if it is some other sort of challenge (such as an HTTP 200 with a form), the devices will be unable to connect to sync.

IBM Traveler has always documented that HTTP Basic Authentication is required (https://www.ibm.com/support/knowledgecenter/SSYRPW_9.0.1/httpauthentication.html).  
Prior to Apple iOS 12, even improperly configured servers would allow the devices to sync because of the credentials being supplied without requiring a challenge.  But with the change on Apple iOS 12, properly configured HTTP Basic Authentication truly is required or the Apple iOS 12 devices running the native applications will be unable to sync.

Related information: Configuring IBM Traveler server - HTTP authentication



via IBM Technote
Kommentare

1Lars Berntrop-Bos  09/19/2018 8:11:46 AM  IBM Technote: Apple iOS 12 Mail, Calendar and Contacts fail to sync if HTTP Basic Authentication is not properly configured

Thanks for the heads-up!

But please fix the link to the technote, the link is broken.

Should be:

https://www-01.ibm.com/support/docview.wss?uid=ibm10731987&myns=swglotus&mynp=OCSSYRPW&mync=R&cm_sp=swglotus-_-OCSSYRPW-_-R

and not:

{ Link }

2Stefano Benassi  09/24/2018 12:28:54 PM  IBM Technote: Apple iOS 12 Mail, Calendar and Contacts fail to sync if HTTP Basic Authentication is not properly configured

I ask IBM why none of my customers with session-based authentication enabled experienced this issue. Is perhaps Internet Sites view required otherwise everything works?

  •  
  • Hinweis zum Datenschutz und Datennutzung:
    Bitte lesen Sie unseren Hinweis zum Datenschutz bevor Sie hier einen Kommentar erstellen.
    Zur Erstellung eines Kommentar werden folgende Daten benötigt:
    - Name
    - Mailadresse
    Der Name kann auch ein Nickname/Pseudonym sein und wird hier auf diesem Blog zu Ihrem Kommentar angezeigt. Die Email-Adresse dient im Fall einer inhaltlichen Unklarheit Ihres Kommentars für persönliche Rückfragen durch mich, Detlev Pöttgen.
    Sowohl Ihr Name als auch Ihre Mailadresse werden nicht für andere Zwecke (Stichwort: Werbung) verwendet und auch nicht an Dritte übermittelt.
    Ihr Kommentar inkl. Ihrer übermittelten Kontaktdaten kann jederzeit auf Ihren Wunsch hin wieder gelöscht werden. Senden Sie in diesem Fall bitte eine Mail an blog(a)poettgen(punkt)eu

  • Note on data protection and data usage:
    Please read our Notes on Data Protection before posting a comment here.
    The following data is required to create a comment:
    - Name
    - Mail address
    The name can also be a nickname/pseudonym and will be displayed here on this blog with your comment. The email address will be used for personal questions by me, Detlev Pöttgen, in the event that the content of your comment is unclear.
    Neither your name nor your e-mail address will be used for any other purposes (like advertising) and will not be passed on to third parties.
    Your comment including your transmitted contact data can be deleted at any time on your request. In this case please send an email to blog(a)poettgen(dot)eu

Treffpunkte

Archive