Idea ID: 2870200

omniusers -add password is not checked for valid characters

Status : New Idea
3 months ago

https://docs.microfocus.com/itom/Data_Protector:2019.08/Users#Web_service_access

the docs list the characters that are allowed but it is not checked or enforced by the program. Please check the user input. It prevents user from connecting via GUI but login to webinterface works.

Password is wrongly saved in IDB and in Keycloak it is correct.

Support told me to make that "feature request" because that behavior is not seen as bug.

Labels:

Backup
GUI - CLI
Parents
  • Hello Artur Lutz,

    I'm not sure if I understand the issue correct, but the password is checked and the information on supported characters is returned by the omniusers command. Please help me to understand what is causing the problem.

    C:\>omniusers -add -type W -usergroup admin -name seb -group LEJWN19 -client lejwn19.mfdemo.local -pass simplepass

    Password does not meet rule requirements
    The password must comply to the following conditions:
    -Includes at least one upper case letter
    -Includes at least one of these special character: an asterisk ( * ), a dot ( . ), an hyphen ( - ), or an underscore ( _ )
    -Includes at least one numeral
    -Does not include spaces

    Regards,
    Sebastian Koehler

  • [root@host ltt]# omniusers -add -type W -usergroup admin -name blabla -group SOMEGROUP -client bla -pass abcd

    Password does not meet rule requirements
    The password must comply to the following conditions:
    -Includes at least one upper case letter
    -Includes at least one of these special character: an asterisk ( * ), a dot ( . ), an hyphen ( - ), or an underscore ( _ )
    -Includes at least one numeral
    -Does not include spaces
    [root@host ltt]# omniusers -add -type W -usergroup admin -name blabla -group SOMEGROUP -client bla -pass 8X8WY%IF0*q~+zZ3

    User 'BLABLA' successfully added to 'admin' group.

    If there is any special character the check is omitted. It should check explicitly for *-_
    Case number is 01712843

Comment
  • [root@host ltt]# omniusers -add -type W -usergroup admin -name blabla -group SOMEGROUP -client bla -pass abcd

    Password does not meet rule requirements
    The password must comply to the following conditions:
    -Includes at least one upper case letter
    -Includes at least one of these special character: an asterisk ( * ), a dot ( . ), an hyphen ( - ), or an underscore ( _ )
    -Includes at least one numeral
    -Does not include spaces
    [root@host ltt]# omniusers -add -type W -usergroup admin -name blabla -group SOMEGROUP -client bla -pass 8X8WY%IF0*q~+zZ3

    User 'BLABLA' successfully added to 'admin' group.

    If there is any special character the check is omitted. It should check explicitly for *-_
    Case number is 01712843

Children