Guest

Preview Tool

Cisco Bug: CSCvs42376 - ENH - SAML Object name should allow URL and terminal PKI enrollment

Last Modified

Jun 25, 2020

Products (1)

  • Cisco Security Manager

Known Affected Releases

4.20(0)

Description (partial)

Symptom:
In the Policy Object Manager  object Saml Identiy Provider you may select PKI's  for Identity and Service Provider .
When selecting a PKI of type "Terminal" this results in an error when submitting:
"Identity Provider and Service Provider Trustpoints in SAML Identity Provider should have Enrollment Type as "URL""

The name of SAML object  needs to be an URL. Only in the newest ASA versions adhere to this specification and accept an url.

Conditions:
++  Running an affected version of CSM . 
++  VPN configuration with SAML Identity Provider .
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.