Using "*" as Type in get_login bypasses the security restrictions

Document ID : KB000087762
Last Modified Date : 14/04/2018
Show Technical Document Details
Issue:
Error Message :
N/A

If you use get_login to receive information from a login object in that way
 
:set &PASSWORD# = get_login(&USER#, &AGENT#, "UNIX", PASSWORD)

you receive this error message:
 
U00020679 Runtime error in object 'JAC#OS.GET_LOGIN' line '00008': The provided type 'UNIX' is not allowed.

That is the expected behavior. You can only read the login entries of backend systems for security reasons. For Windows and Linux systems it is not possible.

But if you us an asterisk
 
:set &PASSWORD# = get_login(&USER#, &AGENT#, "*", PASSWORD)

the password is returned:
 
U00020408 PASSWORD --105160F9407D4BA6B1B4400FDCB236EED1

This is a way around the security restrictions of get_login, as for a UNIX login it should be not allowed to show the password.
 
Cause:
Cause type:
Defect
Root Cause: Error in function get_login.
Resolution:
This field was added on 30/03/2017. This article has not been updated yet. Refer to the "Description" or "Workaround" sections for solution information.

Fix Status: Released

Fix Version(s):
AE Server 11.2.2 of Automation.Engine - already available
AE Server 11.1.3 of Automation.Engine - already available
Additional Information:
Workaround :
N/A