During projects (Eppendorf and Hillrom) we are facing some use cases, where the core platform doens't create audit log entries for specific activities: Registration of devices Login/Logout/Failed login attempts (In scope for 10.10) Events in gener...
For SSO users global roles assignment can be controlled based on attributes from the Active Directory. Inventory roles need to be added manually afterwards. This is probably because the mapping for inventory roles is significantly more complex as ...
In many cases the default device registration does not work. In these cases, it would be good for protocol integrators to allow for defining their own device registration steps. Thatβs the case for example for LoRa devices using the cumulocity-lor...
Proposal Idea Often times while working on Cumulocity microservice which makes use of the Cumulocity platform API there is a need to be aware of the existing APIs that can be leveraged, signature of the APIs i.e. request object it takes and the re...
Update Device Info tab to support new SSIs: RSRP & RSRQ
In Device Management, for a device's 'Info' tab there is a useful 'Device and Communication' widget that displays relevant device specific info. RSSI has been used in 3G, but now with 4G and 5G signals RSRQ and RSRP are used to determine quality o...
We are deploying devices in field that can cache the measurements and transfer them to the Cumulocity only at a predefined intervals. It means, that the measurements reach cumulocity with delay, which sometimes is more than 24 hours.
We need t...
Abuse of the password reset feature - Security Risk
A non-authenticated user can use the password reset functionality to send password reset emails toarbitrary addresses, even if they are not linked to any account of the Web application. The followingrequest and screenshot illustrate this vulnerabi...
Support of weak SSL/TLS encryption protocol - Security Risk
Environmentdormakabastaging.us.cumulocity.com DescriptionThe Web server supports the use of encryption protocols inferior to TLS1.2. Security vulnerabilities havebeen identified in these versions and / or they are no longer compliant with the PCI-...
Edge tenantβs domain name requisition process improvements
Edge tenantβs domain name requisition process improvements
Documented at https://iwiki.eur.ad.sag/display/IOT/Edge+Tenant+domain-name+rules
and
https://iwiki.eur.ad.sag/display/IOT/Current+behavior+in+Edge
Show application name exactly as they are configured
The application names are going through a "normalization process".
This means that application names like "MindSphere Launchpad", are normalized to:"mind sphere launchpad", which is not desired by the customer.
Reason is that changes to this mi...