search cancel

The passwords are not encrypted in NetOps CAMM installs

book

Article ID: 254713

calendar_today

Updated On:

Products

DX NetOps CA Mediation Manager CA Performance Management - Usage and Administration

Issue/Introduction

Do not use UserDatabaseRealm and the tomcat-users.xml file. The use of UserDatabaseRealm and the tomcat-users.xml file is strongly discouraged and requires the filing of a security plan for appropriate documentation of usage.

If using the file-based UserDatabaseRealm, configure Tomcat to hash user passwords in the tomcat-users.xml file.

DX NetOps CA Mediation Manager (CAMM) does not encrypt passwords in the tomcat-users.xml file.

Environment

All supported DX NetOps CA Mediation Manager (CAMM) releases 22.2.4 and earlier

Resolution

DE551462 was submitted to engineering for resolution. They have ensured all passwords in CAMM are encrypted starting with the 22.2.5 release of CAMM.

Upgrade to 22.2.5 or newer CAMM releases to resolve this issue.