Cisco Bug: CSCur55388 - Usernames obscured with asterisks in logs after upgrade to ASA 9.1(5.16)
Apr 16, 2020
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
Symptom:After an upgrade to 9.1(5.16), usernames show up in the ASA logs as a bunch of asterisks for failed login attempts only. For instance: %ASA-6-113015: AAA user authentication Rejected : reason = Invalid password : local database : user = ***** ASA 9.1(5.12) and before doesn't have this issue. For instance: %ASA-6-113015: AAA user authentication Rejected : reason = Invalid password : local database : user = vpnuser Conditions:ASA running 9.1(5.16) or above for anyconnect RA vpn connection with Radius used for authentication and login attempt that fails. Successful logins show the username without a problem.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases