Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »


vProduct Name

CIS-CAT Pro Dashboard

Product Version

v3.xx

Date



Problem

After manually resetting a user password in CIS-CAT Pro Dashboard v3 via MariaDB SQL transactions, the following error is displayed in the web browser upon signing in with a local user account:

Additionally, the (Dashboard directory)/logs/ccpdlogs/ciscatpro.log file contains the following entry corresponding to the sign-in attempt timeframe:

java.lang.IllegalArgumentException: There is no PasswordEncoder mapped for the id "<id>"

Where <id> will either be a numeric value or null.

Solution

This error results from the password record in the ccpd.user database missing its required encryption identifier. CIS-CAT Pro Dashboard uses the {bcrypt} function to securely encrypt user passwords, which needs to be part of the password string.

Log into MariaDB on the Dashboard server in an administrative cmd.exe prompt:

mariadb -u root -p

You can then view the user table in the Dashboard database using the following query
(\G will display the data in row format instead of as a table):

SELECT * FROM ccpd.user\G;

Valid entry for the admin user with ID 1:

db_pw_correct.png

Invalid entry where the passwordstring is missing its {bcrypt} identifier:

db_pw_incorrect.png

To remedy this, re-run the steps to reset the affected user password to the system default of @admin123, including the {bcrypt} string:

update ccpd.user set password = '{bcrypt}$2a$10$a3q/yfSXin0JSzamE10vE.S1GWEPhINZEhNKBGoveS3DSQTF2r4vW' where username = 'admin';

Replace where username = 'admin'; in this query with the relevant username, or use where id = 1; to match the entry by its ID from the initial error message.

You can then sign into the Dashboard account with its username and the password @admin123, which will prompt a credential change following a successful login.

Keywords; Dashboard PasswordEncoder

Content by Label


Copyright © 2024

Center for Internet Security®


  • No labels