Guest

Preview Tool

Cisco Bug: CSCvs71593 - BAT Job Sceduler Log file reveals SSH Secure Shell Password in plain text

Last Modified

Sep 18, 2020

Products (1)

  • Cisco Unified Communications Manager (CallManager)

Known Affected Releases

12.5(1.12900.111)

Description (partial)

Symptom:
BAT Job Sceduler Log file reveals SSH Secure Shell Password in plain text

Conditions:
1)Login to CCMAdmin.
2)Access the path Device->Phone and add the Phones of any type that supports Secure Shell User and Secure Shell Password.
3)Access the path Bulk Administration->Phones->Update Phones->Query. In Find and List Phones To Update page, select the phones added above and click on Next button.
4)Provide Secure Shell User and Secure Shell Password and select Run Immediately radio button followed by click on Submit button.
5)Warning message displayed below is seen
"You have added SSH/Web credentials. It is advisable to enable the TFTP Encrypted Config option on the Phone Security Profile configuration for the endpoint. Otherwise, these credentials can be exposed. <br> Note: Enabling TFTP Encrypted Config will prevent off-premise MRA devices from completing CAPF operations. These devices will need to be registered on-premise before being deployed over MRA."
5)In Job Sceduler page for the job added, make sure Job Result Status is Success. Log file indicates Secure Shell Password in Plain text
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.