Passwords In ACS_USER Table Stored As Clear Text
(Doc ID 2779889.1)
Last updated on MAY 28, 2021
Applies to:Oracle Communications Network Charging and Control - Version 4.4.1 and later
Information in this document applies to any platform.
On Oracle Communications Network Charging and Control Applications (NCC) 4.4.1 version,
It is observed that the "ACS_USER" table stores the passwords of users as clear text.
Here Customers login to ACS using the ACS GUI (acs.jnlp file) and log into their own partition using their credentials which are stored in table ACS_USER. They need this system to be able to store encrypted versions of these passwords for these users rather than clear text.
Is there any way to have these passwords stored encrypted on NCC 4.4.1 Version? Do newer releases of NCC store these user passwords in the 'ACS_USER' with encryption or provide a more secure means of storing user passwords?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document