Guest

Preview Tool

Cisco Bug: CSCvv77530 - Unable to retrieve LDAP Groups/Subject Attributes when % chrcter is used twice or more in bind pswd.

Last Modified

Oct 13, 2020

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.4(0.357)

Description (partial)

Symptom:
++Unable to retrieve LDAP Groups (in the Groups-Tab) or LDAP Subject Attributes (Attributes-Tab) in the LDAP profile. The LDAP bind is successful. During LDAP bind, ISE indicates that it sees LDAP Groups and Subjects.
++It feels like that  ISE is not sending any request or packets to the LDAP server when we are trying to retreive the groups with wildcard(*) or even with a proper group name. There are no packets in the packet captures.

Conditions:
% character is used twice or more times in the bind password.
For ex:-
Grt%yt%4r
Cisc01%^&%*wr
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.