BugZero | Cisco BugID CSCwa73860 - After Upgrade, the files in the rabbitmq cert dire...

Cisco - Defect ID: CSCwa73860

After Upgrade, the files in the rabbitmq cert directory have incorrect permissions

Cisco - Defect ID: CSCwa73860

After Upgrade, the files in the rabbitmq cert directory have incorrect permissions

Last updated on 3/17/2025

Overall: 6.36.3

Severity: 6.46.4

Lifecycle: 9.19.1

Popularity: 6.96.9

What is the BugZero Risk Score?

Vendor details

No defect details.

Overall: 6.36.3

Severity: 6.46.4

Lifecycle: 9.19.1

Popularity: 6.96.9

What is the BugZero Risk Score?

Vendor details

No defect details.

Symptom

Getting alarms: Queue Link Error: Message=From XXXX To XXXX; Cause={ tls_alert;{unknown_ca;"tls Client: In State Certify At Ssl_handshake.erl:1887 Generated Client Alert: Fatal - Unknown Ca\n"}

Conditions

Upgrade to ISE 3.1

Workaround

if getfacl is as mentioned in the bug description please do the following: 1. setfacl -R -m group:ise:rwx /opt/rabbitmq/cert 2. Regenerate IMS certs check for expected output of ls: ls -lrt /opt/rabbitmq/cert -rwxrwxr--+ 1 iserabbitmq ise 5285 Oct 25 05:58 containerservercertandkey.pem -rwxrwxr--+ 1 iserabbitmq ise 7897 Oct 25 05:59 containercacert.pem

Further Problem Description

After upgrading from 3.0 to 3.1, from a node the rebbitmq certificate got broken generating "Queue link error" alarms.

Original Vendor Announcement

9.65Defect ID: CSCwd45843
Auth Step latency for policy evaluation due to Garbage Collection activity.
9.65Defect ID: CSCwa92734
CUBE DTMF interworking fails from rtp-nte to OOB SIP methods
9.65Defect ID: CSCwj45822
Cisco ASA and FTD Software Remote Access VPN Brute Force Denial of Service Vulnerability
9.65Defect ID: CSCvo03458
PKI "revocation check crl none" does not fallback if CRL not reachable
9.65Defect ID: CSCvq05584
Cisco IOS and IOS XE Software Tcl Arbitrary Code Execution Vulnerability

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Cisco - Defect ID: CSCwa73860

After Upgrade, the files in the rabbitmq cert directory have incorrect permissions

Cisco - Defect ID: CSCwa73860

After Upgrade, the files in the rabbitmq cert directory have incorrect permissions

Last updated on 3/17/2025

Vendor details

Vendor details

Description

Symptom

Conditions

Workaround

Further Problem Description

Links

Top Cisco defects by risk score

Ready to prevent the next vendor outage?