Guest

Preview Tool

Cisco Bug: CSCun45607 - ISE incorrectly authenticates user based on Authorization PAC file.

Last Modified

Jun 09, 2016

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

1.2(0.899)

Description (partial)

Symptom:
When using EAP-Chaining and NAM, NAM will send the last users Authorization PAC file along with the current users tunnel PAC. ISE incorrectly
authenticates the user based on the Authorization PPAC file sent. This may cause issue as a user can impersonate another one by replying the
authorization PAC

Conditions:
User needs authentication to the system and access to the PAC fie
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.