Guest

Preview Tool

Cisco Bug: CSCvu78719 - When a user has the DLP admin user role on version 13.0.0-392 he cannot see the PVO message action

Last Modified

Sep 18, 2020

Products (1)

  • Cisco Email Security Appliance

Known Affected Releases

13.0.0-392

Description (partial)

Symptom:
On the ESA version when you create a custom user role DLP admin and assign it to a specific user we are seeing an unwanted behavior.
When we login with this specific user and try to add or modify a message action under Mail Policies>DLP Policy Customizations the Quarantine option is not available.

Conditions:
1.Configure a Custom User role DLP Admin on ESA version 13.0.0-392:

Version: 13.0.0-392

<custom_role>
      <role_guid>c416f339b5304afa8c7d39922f833a92</role_guid>
      <role_name>DLP admin</role_name>
      <role_description></role_description>
      <access_privileges>
        <dlppolicy_access>unrestricted</dlppolicy_access>
      </access_privileges>
    </custom_role>

2.Assign this role to a specific user:

<user>
      <username>test</username>
      <fullname>test</fullname>
      <group>delegatedadmin</group>
      <enc_password>*****</enc_password>
      <date_range>current_day</date_range>
      <display_rows>10</display_rows>
      <landing_page></landing_page>
      <landing_page_parms></landing_page_parms>
      <language>en-us</language>
      <last_passwd_change>1592827964</last_passwd_change>
      <ignore_pw_expiration>0</ignore_pw_expiration>
      <lock_reason></lock_reason>
      <enable_forced_password_expiration>0</enable_forced_password_expiration>
      <password_expiration_enabled_time_stamp>0</password_expiration_enabled_time_stamp>
      <password_expiration_time>0</password_expiration_time>
      <password_grace_time>0</password_grace_time>
      <delegated_id>c416f339b5304afa8c7d39922f833a92</delegated_id>
    </user>

3.Login with this user and try to add or modify a message action under Mail Policies>DLP Policy Customizations   and select the Quarantine option.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.