Guest

Preview Tool

Cisco Bug: CSCur55388 - Usernames obscured with asterisks in logs after upgrade to ASA 9.1(5.16)

Last Modified

Mar 30, 2017

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

9.1(5.16)

Description (partial)

Symptom:After an upgrade to 9.1(5.16), usernames show up in the ASA logs as a bunch of asterisks for failed login attempts only.  For instance:

%ASA-6-113015: AAA user authentication Rejected : reason = Invalid password : local database : user = *****

ASA 9.1(5.12) and before doesn't have this issue.  For instance:

%ASA-6-113015: AAA user authentication Rejected : reason = Invalid password : local database : user = vpnuser

Conditions:ASA running 9.1(5.16) or above for anyconnect RA vpn connection with Radius used for authentication and login attempt that fails.  Successful logins show the username without a problem.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.