Guest

Preview Tool

Cisco Bug: CSCur24524 - ENH: SetFileSecurity log shows a misleading path in AnyConnect DART

Last Modified

Jun 28, 2017

Products (1)

  • Cisco AnyConnect Secure Mobility Client

Known Affected Releases

3.1(495)

Description (partial)

Symptom:
As per the log message below, it seems that we're trying to set the file/folder permissions or elevate the privilege for the following path/folder:

C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\abc.xml

Date        : 10/03/2014
Time        : 06:36:49
Type        : Warning
Source      : acvpndownloader

Description : Function: FileMove
File: ..\Common\Utility\NativeSysFileCopy.cpp
Line: 669
Invoked Function: SetFileSecurity
Return Code: 5 (0x00000005)
Description: Access is denied.

Unable to set the security for C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\abc.xml

However, that is not the case as we're elevating the privileges of the 'temp' folder (where the AC XML profile is initially downloaded) to move it to the actual AC profile location (C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\abc.xml) for use.

This is quite misleading as it would create confusion to customers as well as TAC engineers.

--This needs to be changed as:

Unable to set the security for C:\Users\abcuser\AppData\Local\Temp\20012.tmp\abc.xml

Conditions:
This message gets generated because of insufficient permissions/rights on the 'temp' folder (C:\Users\abcuser\AppData\Local\Temp\20012.tmp\abc.xml) for the movement of AC XML profile to AnyConnect Profile directory (C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\abc.xml)
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.