Parameter and Key Parameter fields being updated to "*** Command contains password - removed ***" in Running Processes [cmdb_running_process] table if they contain word: password - Known Error

Parameter and Key Parameter fields being updated to "*** Command contains password - removed ***" in Running Processes [cmdb_running_process] table if they contain word: password Description During Discovery, Parameter and Key Parameter fields are being cleansed in Running Processes [cmdb_running_process] table. It is being masked by the string "*** Command contains password - removed ***"

As a result, Discovery process classifiers such as Jboss will not run as they are unable to match the values in the parameter fields, and in turn Jboss pattern is not launched.

Steps to Reproduce

1) On a San Diego Patch2 instance or later 2) Run discovery on a windows server with jboss process running 3) Observe that the jboss pattern is not triggered (as the conditions for the jboss process classifier are not met) 4) Check Running Processes on the CI for java.exe, in Parameters field, it's showing *** Command contains password - removed ***

Workaround For Windows Server:

> Open MID Server Script File: WMIFetch.psm1

> Find and change below lines one by one:

if ($entry.equals("CommandLine") -and $value -and ($value.indexOf("Password") -gt -1 -or $value.indexOf("password") -gt -1)) { $value = "*** Command contains password - removed ***";

to

if ($entry.equals("CommandLine") -and $value -and ($value.indexOf("Password") -gt -1 -or $value.indexOf("password") -gt -1)) { #PRB1600105 #$value = "*** Command contains password - removed ***"; $value = $value -replace 'password\s*={0,1}\s*\S+', '******';

---

if ($att.equals("CommandLine") -and $val -and ($val.indexOf("Password") -gt -1 -or $val.indexOf("password") -gt -1)) { $val = "*** Command contains password - removed ***";

to

if ($att.equals("CommandLine") -and $val -and ($val.indexOf("Password") -gt -1 -or $val.indexOf("password") -gt -1)) { #PRB1600105 #$val = "*** Command contains password - removed ***"; $val = $val -replace 'password\s*={0,1}\s*\S+', '******';

---

if ($att.equals("CommandLine") -and $val -and ($val.indexOf("Password") -gt -1 -or $val.indexOf("password") -gt -1)) { $val = "*** Command contains password - removed ***";

to

if ($att.equals("CommandLine") -and $val -and ($val.indexOf("Password") -gt -1 -or $val.indexOf("password") -gt -1)) { #PRB1600105 #$val = "*** Command contains password - removed ***"; $val = $val -replace 'password\s*={0,1}\s*\S+', '******';

For Linux Server:

> Open MID Server Script Include : PsOutputParser, Replace the line as below: rp.parameters = "*** Command contains password - removed ***"; WITH rp.parameters = rp.parameters.replace(/password\s*=?\s*\S+/gmi,"******");

> Open Script Include : PsOutputParser, Replace the line as below: rp.parameters = "*** Command contains password - removed ***"; WITH rp.parameters = rp.parameters.replace(/password\s*=?\s*\S+/gmi,"******");