Cisco Bug: CSCsz55407 - PSB : SEC-CRE-REST Not Compliant
Sep 22, 2011
- Cisco Unified Contact Center Express
Known Affected Releases
Symptom: Unified Contact Center Express(UCCX) 7.0 with Communications Manager Express(CME) Deployment does not enforce any security restrictions on the password. Conditions: Product Security Baseline Requirement : Any PRODUCT that supports creation of passwords MUST have the capability to enforce strong user passwords at the time of creation. At creation or any password change, the new password MUST be subject to all of the following restrictions as set by the administrator: 1. That the new password contains characters from at least three of the classes: lower case letters, upper case letters,digits, and special characters. 2. That no character in the new password be repeated more than three times consecutively. 3. That the new passwords not repeat or reverse the user name. 4. That the new password is not ""csico"", ""ocsic"", or any variant obtained by changing the capitalization of letters therein."
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases