Guest

Preview Tool

Cisco Bug: CSCvh91118 - Flexibility needed to choose the time intervals in disclosing the user name for failed auth

Last Modified

Nov 16, 2019

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.4(0.357)

Description (partial)

Symptom:
In ISE 2.4 for any failed authentication, the username which shows as INVALID or USERNAME can be disclosed in UI for 30 minutes only. under Administration -system- settings-protocol-radius
The customer would want to have flexibility (an option)  to enable it for hours, days, or even permanently.

Conditions:
ISE 2.4+
Usernames are masked as USERNAME or INVALID for many auth failures.

Related Community Discussions

Client Authenticating Incorrectly in ISE 2.4
We just upgraded to ISE 2.4 from 2.3.  A client computer is authenticating with computer credentials.  It shows up as USERNAME/USERNAME.  The authentication fails. I thought I would share this to see if anyone is having the same issue. I also have a TAC case open so I can provide an update from there as well. Thanks, Alex
Latest activity: May 22, 2018
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.