API Connect

 View Only

How to remove the security vulnerability warning in Application domain without downtime in APIC v10

  • 1.  How to remove the security vulnerability warning in Application domain without downtime in APIC v10

    Posted Mon February 12, 2024 12:32 PM
    Edited by Sarada Sahoo Mon February 12, 2024 12:51 PM

    Hello Team,

    After recent upgrade to 10.0.5.2, we have started getting security vulnerability warning in Application domain in APIC v10. We are able to solve this issue in UAT by adding the custom password alias in each gateway peering object. 

    All the API calls will fail with 401 and 404 errors after we update the gateway peering objects in all the gateways. We had to take reboot of all gateways in lower environments for this to work and it will take few minutes after that for all the API collections to come up.

    We have tried doing it in 1-2 gateways to reduce the downtime but looks like it will only work after we have updated the password alias in all the gateways in cluster.

    Is there any way all this can be done without a downtime ? attached screenshot to give more prospective on the warnings I am talking about.



    ------------------------------
    Kind Regards
    Sarada Sahoo
    ------------------------------