Guest

Preview Tool

Cisco Bug: CSCsz55407 - PSB : SEC-CRE-REST Not Compliant

Last Modified

Sep 22, 2011

Products (1)

  • Cisco Unified Contact Center Express

Known Affected Releases

7.0(1) 8.0(1)

Description (partial)

Symptom:
Unified Contact Center Express(UCCX) 7.0 with Communications Manager Express(CME) Deployment does not enforce any security restrictions on the password.
Conditions:

Product Security Baseline Requirement : Any PRODUCT that supports creation of
passwords MUST have the capability to enforce strong user passwords at the time of creation. At creation or any password change, the new password MUST be subject to all of the following restrictions as set by the administrator:
1. That the new password contains characters from at least three of the classes: lower case letters, upper case letters,digits, and special characters.
2. That no character in the new password be repeated more than three times consecutively.
3. That the new passwords not repeat or reverse the user name.
4. That the new password is not ""csico"", ""ocsic"", or any variant obtained by changing the capitalization of letters therein."
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.