Guest

Preview Tool

Cisco Bug: CSCup52464 - Global user in UCS Central can see in other locales if logged into UCSM.

Last Modified

Mar 29, 2017

Products (1)

  • Cisco Unified Computing System

Known Affected Releases

2.2(1d)A

Description (partial)

Symptom:
Global users created in UCS Central that are members of LDAP Group Maps with locales cannot see other locales when logged into UCS Central - this is expected behavior.  If that same user logs into the UCSM Domain directly, they can see peer sub-orgs and locales.  This is not expected behavior.

Conditions:
A global user is created in UCS Central.

This user is a member of an LDAP Group Map and this LDAP Group Map is restricted to sub-orgs by using Locales.

When this user logs into UCS Central, they only see the Locales / sub-orgs that they have permission to see.

When this same user logs into a UCSM domain directly, they can see all lateral locales.  They cannot modify or reboot anything, however they have visibility into them which they should not have.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.