Guest

Preview Tool

Cisco Bug: CSCum41106 - CoA REST API works even with incorrect [serverhostname]

Last Modified

Jun 08, 2016

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

1.2(0.899)

Description (partial)

Symptom:
CoA REST API works even with incorrect [serverhostname].

For example:

https://ise2.ecats.local/ise/mnt/CoA/Reauth/WIN74.ecats.local/00:14:D1:26:BC:B4/0/ 

where "ise2.ecats.local" is the MnT, "WIN74.ecats.local" is our Windows endpoint with mac address 00:14:D1:26:BC:B4.

It would still work even with incorrect "WIN74.ecats.local" (should be "ise3.ecats.local", the PSN that session is authenticated and authorized).  Seems like the [serverhostname] is ignored incorrectly above.

Conditions:
N/A
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.