Database Password shown in the plain text in the View Submitted Tasks
search cancel

Database Password shown in the plain text in the View Submitted Tasks

book

Article ID: 271159

calendar_today

Updated On: 08-07-2023

Products

CA Identity Suite

Issue/Introduction

We have found the issue in the Identity Manager - View Submitted Tasks.

Attribute -Screen Logical attribute  - |VALUE| the value of the attribute is shown in plain text.

In the Admin Tasks definition, Style is set as Password.

 

Environment

Release : 14.4

Cause

If the "field to match against" is not set to point to any User store attribute - Screen Logical attribute will have no settings like sensitive and encrypted.,

Resolution

Setting "field to match against" to point to an Attribute that is sensitive ensures two things:

Value of Screen Logical Attribute is treated as the value of attribute it matches against - so at least sensitive in your example/ sensitive encrypted in mine below.

This ensures that if the original attribute is at least sensitive value won't be visible in VST. 

 

Password and confirm password are checked if they are the same value.

 

String001 is Sensitive and encrypted

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=aHfORS0N6hOVE8woGUosVg==

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=7Cj6QyvGc8Q1Vjk6fBe5xQ==

Configmstring001 value is shown on the task screen because Style is Text, not Password.

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=ijaWDRRajXMFicOx0of2yQ==

https://api-broadcom-ca.wolkenservicedesk.com/attachment/get_attachment_content?uniqueFileId=HO/DVUtAq0kK5w5y9Pd//A==

Powered by Wolken Software