Guest

Preview Tool

Cisco Bug: CSCut56663 - TES 6.2.1 and 6.1.0 Built-in Inquiry Security Policy Allows edits

Last Modified

Jun 02, 2017

Products (20)

  • Cisco Workload Automation
  • Cisco Tidal Enterprise Adapter for Oracle E-Business Suite
  • Cisco Tidal Enterprise Adapter for VMware
  • Cisco Tidal Enterprise Adapter for Oracle Database
  • Cisco Tidal Enterprise Adapter for SAS
  • Cisco Tidal Enterprise Adapter for Web Services
  • Cisco Tidal Enterprise Scheduler 6.2
  • Cisco Tidal Enterprise Adapter for Cognos
  • Cisco Tidal Enterprise Adapter for SAP
  • Cisco Tidal Enterprise Adapter for Informatica
View all products in Bug Search Tool Login Required

Known Affected Releases

6.1.0 6.2.1

Description (partial)

Symptom:
In 6.2.1 and 6.1.0 the Built-in Inquiry Security Policy allows editing and job control when the user should only be able to view.

Steps to recreate:
1.  Assign a user the inquiry security policy.
2.  Have user login as that user.
3.  Assign a runtime user to the interactive user.
4.  As this interactive user edit a job that has the runtime user assigned

Conditions:
Normal inquiry only interactive user should not be able to edit or control jobs and objects
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.