...
Code Block | ||||||||
---|---|---|---|---|---|---|---|---|
| ||||||||
db.unauthenticatedperformancemeasurements.insert({ "event":{ "commonEventHeader":{ "domain":"perf3gpp", "eventId":"95e79282-2876-4000-8192-b514ad7f399a", "sequence":0, "eventName":"perf3gpp_RnNode-Slicing_pmMeasResult", "sourceName":"220", "reportingEntityName":"", "priority":"Normal", "startEpochMicrosec":1651216762867, "lastEpochMicrosec":1651216762868, "version":"4.0", "vesEventListenerVersion":"7.1", "timeZoneOffset":"UTC+05:30" }, "perf3gppFields":{ "perf3gppFieldsVersion":"1.0", "measDataCollection":{ "granularityPeriod":900, "measuredEntityUserName":"", "measuredEntityDn":"220", "measuredEntitySoftwareVersion":"r0.1", "measInfoList":[ { "measInfoId":{ "sMeasInfoId":"measInfoIsVal" }, "measTypes":{ "sMeasTypesList":[ "SM.PrbUsedDl.01-3C5C90", "SM.PrbUsedUl.01-3C5C90" ] }, "measValuesList":[ { "measObjInstId":"15155", "suspectFlag":"false", "measResults":[ { "p":1, "sValue":"5" }, { "p":2, "sValue":"7" } ] }, { "measObjInstId":"15174", "suspectFlag":"false", "measResults":[ { "p":1, "sValue":"6" }, { "p":2, "sValue":"7" } ] }, { "measObjInstId":"15175", "suspectFlag":"false", "measResults":[ { "p":1, "sValue":"15" }, { "p":2, "sValue":"4" } ] }, { "measObjInstId":"15176", "suspectFlag":"false", "measResults":[ { "p":1, "sValue":"5" }, { "p":2, "sValue":"14" } ] }, { "measObjInstId":"15825", "suspectFlag":"false", "measResults":[ { "p":1, "sValue":"0" }, { "p":2, "sValue":"14" } ] } ] } ] } } } }) |
E2E network slicing issues
If Portal UI doesn’t go up and so you cannot access SDC UI via Portal UI, you need to do the following steps in order to be authenticated for accessing SDC UI.
- Go to https://<<sdc_ip>>:<<sdc_port>/ with Google Chrome Dev
- Open Inspect and go to Application section
- On left column, open Cookies
- Add the following cookie key/value
USER_ID cs0008 for designer role
USER_ID demo for admin role
This hack can be possible since SDC UI authentication mode is cookie based. So the attacker can override the cookie to force its request.