Guest

Preview Tool

Cisco Bug: CSCvs15947 - Users with non admin privileges can't query faultSummary/faultInst classes using Postman

Last Modified

Dec 09, 2019

Products (1)

  • Cisco Application Policy Infrastructure Controller (APIC)

Known Affected Releases

2.3(1f)

Description (partial)

Symptom:
* Trying to query all the faults present on the fabric using Postman. For that we were querying the APIC controllers but we weren't getting any entries.
 
"totalCount": "0",
    "imdata": []
 
* When querying the same classes using icurl on the APIC controllers, it returns the expected outputs.
 
ex:
 
UKRTEL-DC-APIC-1:~> icurl 'http://secure-web.cisco.com/1dDK0PS6IYha36jfBEYLHZlh0Xir3wcdbnklU31y37vR6_Jv7T7ez5oWzTe1osGWS83CK14ZOwwmsv7jzpAw1W9hmU_SN93p5JZSsueLP6rwaSkrh4Ui8dxcK7H-pkDiChxtVmwbwmHu18Nzwa3zgkQKX5yp3a_zCSz_73g6jFypDRo_m080wysO6o-ccK1q6Z_xO_b3bx-EB4DwWadYKlXLMlQwzlPFF_ItapzdGj5TKqNLS8P7szuom1XH7_Fn-R_iWnvLXX7g0EjPCM5TnEFNh5MQ7_RiZ-XvXaz4rXQuyg7ReRArKcVgIQgo1jYNk/http%3A%2F%2Flocalhost%3A7777%2Fapi%2Fclass%2FfaultSummary.json' | jq '.'
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  1271  100  1271    0     0  17300      0 --:--:-- --:--:-- --:--:-- 17410
{
  "totalCount": "3",
  "imdata": [
    {
      "faultSummary": {
        "attributes": {
          "cause": "protocol-mcp-topology-anomaly",
          "childAction": "",
          "code": "F2533",
          "count": "1",
          "descr": "This fault occurs when a loop is detected",
          "dn": "fltcode-F2533",
          "domain": "access",
          "nonAcked": "0",
          "nonDelegated": "1",
          "nonDelegatedAndNonAcked": "0",
          "rule": "mcp-if-mcplo-prio-loop-detected-per-vlan",
          "severity": "critical",
          "status": "",
          "subject": "oper-err",
          "type": "operational"
        }
      }
    },
 
* When querying other classes, using Postman, we don't see the same the problem.

Conditions:
Users with non admin privileges can't query faultSummary/faultInst classes using Postman.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.