Skip to main content

Troubleshooting

  • If a password randomization is triggered and the password reset fails, the following error may appear in the logs for the [updateresource] operation:

    The property 'portRestriction' requires property 'hostRestriction'to be specified.

    According to the REST API documentation for the method used to update shared credential’s password, hostRestriction cannot be empty when portRestriction is defined.

    In the list of attributes in the target list file, check to see if portRestriction or hostRestriction are listed.

    If the portRestriction attribute is listed, then you will need to either add a value for hostRestriction for the shared credential in Rapid7 Nexpose or remove the value specified for hostRestriction.

    You will need to run auto discovery again prior to attempting another password randomization.

  • On Rapid7 version 6.5.97, Microsoft SQL Server and Sybase database credentials cannot be updated when a domain value is defined. The following error may appear in the logs:

    The property 'domain' requires property 'useWindowsAuthentication' to be specified to true.

    The REST API incorrectly returns false for ’useWindowsAuthentication’. In order to update this credential, the domain value should be undefined.

  • On Rapid7 version 6.5.97, it is not possible to update Kerberos credentials as the REST API does not return the ’realm’ value. The following error may appear in the logs:

    The property 'realm' must not be empty for the 'KerberosAccount' object.

  • Shared or site credentials that do not have an explicit password field cannot be updated, such as hash or community names.

In this section: