tracker issue : CF-3737748

select a category, or use search below
(searches all categories and all time range)
Title:

[ANeff] Bug for: 30 issues with Secure Profile page

| View in Tracker

Status/Resolution/Reason: Closed/Fixed/

Reporter/Name(from Bugbase): Aaron Neff / Aaron Neff (Aaron Neff)

Created: 04/07/2014

Components: Security, Secure profile

Versions: 11.0

Failure Type:

Found In Build/Fixed In Build: PublicBeta /

Priority/Frequency: Major / Most users will encounter

Locale/System: English / Win All

Vote Count: 0

30 issues with Secure Profile page (please see attached PDF and follow the steps)

Some of the issues:

- Secure Default Value for "Enable RDS" is true

- Secure Default Value for "Enable Sandbox Security" is false

Enabling Secure Profile:
1) leaves "Admin separate UserID Required" as false
2) leaves "RDS Authentication Enabled" as false
3) leaves "RDS separate UserID Disabled" as true

Disabling Secure Profile
1) Does not restore the "Enable RDS" setting
2) Does not restore the "RDS Authentication Enabled" setting
3) Does not restore the "Enable Sandbox Security" setting
4) Restores the "Allowed IP Addresses" setting as NULL

Re-enabling Secure Profile
1) Sets "Admin separate UserID Required" as false
2) Sets "RDS separate UserID Disabled" as true
3) Sets "Allow concurrent login sessions for Administrator Console" to true

Re-disabling Secure Profile
1) Throws error "There was an error while enabling secure profile and its settings. Please check logs for more details. (the "enabling" should be "disabling")
2) No error is logged to any of the CF log files
3) Secure Profile remains enabled

Note: For consistency w/ the naming of the "Admin separate UserID Required" setting, the "RDS separate UserID Disabled" should be changed to "RDS separate UserID Required" (and, of course, the Secure Default Value should be changed to true)

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	3737748

External Customer Info:
External Company:  
External Customer Name: itisdesign
External Customer Email:

Attachments:

  1. April 07, 2014 00:00:00: 1_20140407_CFAdmin_SecureProfile.pdf
  2. December 06, 2014 00:00:00: 2_20141206_Bug_3737748_IssuesWithSecureProfile.zip

Comments:

Related thread: http://prerelease.adobe.com/r/?57270728e33449d7984fdf134e330fdc
Comment by External U.
12824 | April 07, 2014 02:22:27 AM GMT
Fixed, Verified with build #291091 (Comment added from ex-user id:duttswam)
Comment by Adobe D.
12825 | September 08, 2014 10:28:16 PM GMT
Hi Gaurav, Verified all except #30 were fixed in CF11 Update 3. Very cool. Please compare the 2 images in attached 20140407_CFAdmin_SecureProfile.pdf for the remaining unfixed issue and 3 other issues (numbered #1-#4). #1 - "in table below" should be "in the table below" (my fault for not including "the" originally) #2 - It would be visually better if the Admin and RDS settings were grouped/sorted as: ----------- Admin Authentication Enabled Admin separate UserID Required RDS Authentication Enabled RDS separate UserID Required ----------- #3 - This is the unfixed #30 from original report. The "RDS separate UserID Disabled" (secure default value "false') should be "RDS separate UserID Required" (secure default value "true"). As shown in #2 above, the consistency is better. #4 - Secure Default Value is false for "Disable create, drop, alter, grant, revoke, stored procedures for DSNs". It should be true. Thanks!, -Aaron
Comment by External U.
12826 | December 06, 2014 04:32:05 AM GMT
The "20140407_CFAdmin_SecureProfile.pdf" in my last comment should've been "20141206_Bug_CF-3737748_IssuesWithSecureProfile.zip". Please compare the 2 images in attached 20141206_Bug_CF-3737748_IssuesWithSecureProfile.zip Thanks!, -Aaron
Comment by External U.
12827 | December 06, 2014 04:33:55 AM GMT
*BUMP*!! Needs re-opened. Not completely fixed. Annoying that I have to continually follow-up on stuff. It's been over a year. Thanks!, -Aaron
Comment by External U.
12828 | May 12, 2016 05:37:28 PM GMT