Guest

Preview Tool

Cisco Bug: CSCuq24621 - WSA takes minutes to start using CDA mapping update to assign policy

Last Modified

Nov 13, 2016

Products (1)

  • Cisco Web Security Appliance

Known Affected Releases

8.0.6-017

Description (partial)

Symptom:
1) End user logs in to workstation.  End user is blocked from a site they should be allowed to go to, per policy.  OR
2) End user logs in to workstation.  End user is permitted to a site they should be blocked from, per policy.

WSA tuistatus command shows user mapping information has been updated.  However, WSA is still using old mapping information to assign policy.

Conditions:
WSA is using CDA and an identity that requires transparent user identification.  Different users are logging into and out of a workstation frequently, causing the TUI mappings to be updated frequently.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.