Preview Tool

Cisco Bug: CSCvv07743 - [DOC]: Jabber limitations about Jabber Diagnostics mode with LDAP credentials on Service Profile

Last Modified

Jul 20, 2020

Products (1)

  • Cisco Jabber for Windows

Known Affected Releases

12.7(1) 12.8(0) 12.8(1) 12.8(2) 12.8(2.1) 12.8(3) 12.9(0) 12.9(1) 14.0(0)

Description (partial)

When using an LDAP service account username and password in Call Manager Service Profile Configuration, service account password appears to be exposed to end-user in the Jabber diagnostic mode under any of the "UDS" links: Home UDS, HOME_UDS_NODES

These are new fields available in Call Manager Service Profile Configuration page beginning with 12.5.1.SU2.

The new feature is documented in Release notes for CallManager 12.5.1SU2 : "Support for LDAP Credentials in Cisco Jabber Service Profile"

Ideally, the LDAP username and password both should be obscured in these diagnostic links, or, if working as intended, a warning should be made in documentation for this feature in 12.5.1SU2 and forward, noting that the service password is exposed in the Jabber client diagnostic. If using this feature the administrator should consider disabling diagnostic mode access via the Jabber configuration xml settings.

If the single service account is necessary, the diagnostic mode should be shut off globally for Jabber end-users except in the case necessary to troubleshoot an individual Jabber user.

This Documentation defect is raised to add this limitation/design consideration as a Note in the Jabber Documents (both Administration/Installation and Release Notes)

This is applicable for CUCM versions 12.5.1.SU2 onward when the "Support for LDAP Credentials in Cisco Jabber Service Profile" feature is involved
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.