Db2

 View Only
  • 1.  DMC v3.1.11

    Posted Thu May 11, 2023 02:38 PM

    When I am setting up alerts by putting the account/password then click save and then test email I will receive the email successfully. I have enabled alerts and when doing a takeover or something that would trigger an alert my account would get locked out(5 bad attempts) after 5 alerts. When reviewing the log it appears the password is saved incorrectly. Security forces us to use a 25 character password for service accounts. It appears when changing password multiple of times it still does not save correctly. What appears to look like what is happening is after the 20th character a blank space is entered following the remainder of password via log records? I have tried pasting and manually typing the password but it still saves with a blank space after the 20th character. It will work initially the first time on that screen when doing a test email but is saving incorrectly after leaving page?

    Does anyone else have a security team that forces 25 characters and are receiving the same effect?



    ------------------------------
    Thanks
    ------------------------------


  • 2.  RE: DMC v3.1.11

    Posted Mon May 15, 2023 10:09 AM

    I have tried a shorter passwords and confirmed by looking at logs that a space is being saved in passwords. If I test before saving it works fine. My dswebserver_override.properties shows wti_encryption_key_enable=true and stores passwords encrypted in that file. I can verify and review the error log in which shows the spaces being saved. I was thinking it was special characters throwing a space but see it will implement a space after lowercase as well.

    is this a bug in DMC v3.1.11 as I don't want to set encryption false and enter clear text?



    ------------------------------
    kory sonnier
    ------------------------------



  • 3.  RE: DMC v3.1.11

    Posted Fri June 02, 2023 07:25 AM

    The resolution is not to put a + in password.



    ------------------------------
    kory sonnier
    ------------------------------