APM Command Center Security Vulnerabilities flagged in a security audit.

Document ID : KB000008204
Last Modified Date : 14/02/2018
Show Technical Document Details
Issue:

 A customer failed a security audit because the default webpage for APM Command Center does not have Autocomplete disabled on the password field. 

Environment:
APM Command Center 10.x
Cause:

 This page is not coded to include this parameter.

Resolution:

 A code fix was issued to correct this problem for the customer.  If having this same issue, then open a new Support case @ Support.ca.com and request the fix from Defect DE311699.  Support Engineers will then have to request the fix and provide this file to you. 

The fix is to replace only one file and restart the Enterprise Manager and APM Command Center.

Additional Information:

This issue is scheduled be fixed in CA APM 10.7.