000022455 - APIServerProxy.getAdministrativeUsers().getByName('BOB') does not raise an exception even if 'BOB' is not an administrator

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022455
Applies ToRSA ClearTrust 5.5.3 Administrative API
getAdministrativeUsers()
IssueAPIServerProxy.getAdministrativeUsers().getByName("BOB") does not raise an exception even if "BOB" is not an administrator
APIServerProxy.getAdministrativeUsers().getByName() returns an administrative user object (IAdministrativeUser) even if named user is not an administrator
ResolutionThis issue has been resolved in a hot fix for RSA ClearTrust 5.5.3. Contact RSA Security Customer Support to obtain hot fix 5.5.3.42, or request the latest fix level (which is cumulative, and contains fixes from previous fix levels).

This hot fix makes 
the ClearTrust Administrative API only return an IAdministrativeUser object for a ClearTrust administrator, e.g. users with administrative roles assigned to them as intended.
Legacy Article IDa28520

Attachments

    Outcomes