Guest

Preview Tool

Cisco Bug: CSCvs29075 - CPO / Cannot create service item after parameter change in PSC

Last Modified

Dec 20, 2019

Products (1)

  • Cisco Prime Service Catalog

Known Affected Releases

12.2

Description (partial)

Symptom:
CPO activity "Create Service Item" failing with error : "<nsapi-error-response errorcode="AUTH_0013">Security Threat detected.</nsapi-error-response>"

Conditions:
When changing setting at PSC side: amend a security parameter (set "session.token.validation" to 1 in RequestCenter.war/WEB-INF/classes/config/newscale.properties) on the PSC instance (version 12.1.1) according to this article ( https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-psc-csrf) in order to fix a CSRF issue discovered during some PEN Tests
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.