Category
Administration
Product Version
9.0
URGENT!!! Using Password Reset Link Disables Password Case Sensitivity
Completed
Hi Fishies,
Potentially a bit of a huge problem here. It appears that if you use the Forgotten Password link that takes you to .../PasswordForgotten.i4 the password you set is case insensitive.
Confirmed on 9.8.2.2.
Process, navigate to https://youryellowfin.com/PasswordForgotten.i4 & enter email address.
Click the link in the email to set your password, enter a password with upper & lowercase letters, numbers etc
On the login screen, type the password in all lower case. It still has to contain all the same letters, numbers & symbols in the correct order but the case sensitivity is lost.
Looks like this has been an issue since 2011!!
The same problem 
Hello Lex,
Thank you for reaching out to Yellowfin Support
Allow me sometime to look into this issue. I will get back to you with my findings.
Regards,
Yamini Naidu
Hello Lex,
Thank you for reaching out to Yellowfin Support
Allow me sometime to look into this issue. I will get back to you with my findings.
Regards,
Yamini Naidu
Hello Lex,
Could you please verify the settings under Administration-->Configuration-->Authentication-->Password settings
Regards,
Yamini Naidu
Hello Lex,
Could you please verify the settings under Administration-->Configuration-->Authentication-->Password settings
Regards,
Yamini Naidu
I'm not entirely sure why that would matter in the slightest?
If the password is Test123 then TEST123 and test123 should not work, regardless of the password requirements.
Every option is selected except password must be different from last but again, it's completely and totally irrelevant to the issue at hand.
I'm not entirely sure why that would matter in the slightest?
If the password is Test123 then TEST123 and test123 should not work, regardless of the password requirements.
Every option is selected except password must be different from last but again, it's completely and totally irrelevant to the issue at hand.
Hello Lex,
Allow me some time to investigate this internally. I will get back to you with my results.
Regards,
Yamini Naidu
Hello Lex,
Allow me some time to investigate this internally. I will get back to you with my results.
Regards,
Yamini Naidu
Hello Lex,
I was able to replicate the problem with 9.8.2.2, saw the identical error that you saw. 9.8.2.2 appears to have an issue with this.
When I tried the problem in 9.10, everything appears to be functioning as expected. Working fine in this version. Could you please give it a try in version 9.10 since it appears to have fixed this issue.
Below is the link of my replication in 9.10. When I entered test@123 I got error like it should contain one upper case. Test@123 worked fine and I was able to login.
https://ftp.yellowfin.bi/f/6b00c8fdbb870339
Let me know if I did something wrong.
Regards,
Yamini Naidu
Hello Lex,
I was able to replicate the problem with 9.8.2.2, saw the identical error that you saw. 9.8.2.2 appears to have an issue with this.
When I tried the problem in 9.10, everything appears to be functioning as expected. Working fine in this version. Could you please give it a try in version 9.10 since it appears to have fixed this issue.
Below is the link of my replication in 9.10. When I entered test@123 I got error like it should contain one upper case. Test@123 worked fine and I was able to login.
https://ftp.yellowfin.bi/f/6b00c8fdbb870339
Let me know if I did something wrong.
Regards,
Yamini Naidu
Hello Lex,
Please let me know your availability for a call. As this seems to be a little confusing issue, I would love to jump on a call and make this clear.
Regards,
Yamini Naidu
Hello Lex,
Please let me know your availability for a call. As this seems to be a little confusing issue, I would love to jump on a call and make this clear.
Regards,
Yamini Naidu
Hello Lex,
Thanks for joining the call. As this seems to be a bug, allow me some time to check this further and I will get back to you with the update.
Regards,
Yamini Naidu
Hello Lex,
Thanks for joining the call. As this seems to be a bug, allow me some time to check this further and I will get back to you with the update.
Regards,
Yamini Naidu
Replies have been locked on this page!