Re: Finesse 12.0.1 ES08 CSP xframe CLI options not available

Javier Aparicio · ‎09-28-2023

Hi,

I am following the Cisco Finesse Administration Guide, Release 12.0(1) * and the CLI commands it shows to configure the CSP are not available in my Finesse. Did I miss anything to enable? Is it a known issue? Can somebody give me a hint how can I deal with the CSP configurations here?

Thanks!

Javi

* https://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cust_contact/contact_center/finesse/finesse_1201/Admin/guide/cfin_b_1201-administration-guide-release-1201/cfin_b_1201-administration-guide-release-1201_appendix_01111.html#reference_33B72E3362CC39B...

dhiarumu · ‎09-28-2023

Hi Javier,

Could you try pasting the entire command in CLI? "utils finesse frame_access_whitelist list". If it is not present, it should be some bug in migration, what was the upgrade path?

Also, could you try this command in CLI?
utils finesse show_property webservices com.cisco.ccbu.finesse.csp.frame_ancestors.whitelist
and to update the value
utils finesse set_property webservices com.cisco.ccbu.finesse.csp.frame_ancestors.whitelist 'https://abc.com, https//xyz.com'
This should ideally do the same update what the specific cli does.

Thanks

Javier Aparicio · ‎09-28-2023

Thanks for the answer.

The command utils finesse frame_access_whitelist list returns
Executed command unsuccessfully
No valid command entered

The utils finesse show_property webservices com.cisco.ccbu.finesse.csp.frame_ancestors.whitelist returns undefined
After executing the utils finesse set_property webservices com.cisco.ccbu.finesse.csp.frame_ancestors.whitelist I got the same error Refused to frame 'https://lab02uefin3b.lab.lan:7443/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors https://lab02uefin3b.lab.lan:* http://lab02uefin3b.lab.lan:* https://lab02uefin3b:* http://lab02uefin3b:* https://lab02uefin3a.lab.lan:* http://lab02uefin3a.lab.lan:* https://lab02uefin3a:* http://lab02uefin3a:*".

The new utils finesse show_property webservices com.cisco.ccbu.finesse.csp.frame_ancestors.whitelist returns The value of property 'com.cisco.ccbu.finesse.csp.frame_ancestors.whitelist' is 'https://*.visualforce.com:*,https://*.my.salesforce.com:*,https://*.lightning.force.com:*,https://*.vf.force.com:*,https://*.visual.force.com:*'

About the upgrade path, I can see the following in the inactive / active versions:

admin:show version inactive
Inactive Master Version: 11.6.1.10000-30
Inactive Version Installed Software Options:
finesse-cce.1161.ES09_01.10000.cop
finesse-cce.1161.ES10.10000.cop
finesse-cce.1161.ES05.10000.cop
finesse-cce.1161.ES11.10000.cop
finesse-cce.1161.ES09.10000.cop

admin:show version active
Active Master Version: 12.0.1.10000-17
Active Version Installed Software Options:
finesse-language-pack_26-12.0.1.10000-19.cop
finesse-cce.1201.ES08.10000.cop

bill.king1 · ‎09-28-2023

I'm guessing you might be running into this?
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvw53276
UCCX 12.0 utils finesse frame_access_whitelist missing in ES04 install

Javier Aparicio · ‎09-29-2023

Seems to be the same problem with different environment (UCCE) and different versions (ES08). Can you please indicate me which ES from the Finesse 12.0(1) should I install in order to have those commands?

bill.king1 · ‎09-29-2023

There isn't anything listed. You may need to open a TAC case and reference that defect to see if they can update the defect and list what version(s) of CCE are impacted and what the fix is.