Last Modified: Jun 12, 2024
Affected Product(s):
BIG-IP APM
Known Affected Versions:
15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2, 16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3, 16.1.3.4, 16.1.3.5, 17.0.0, 17.0.0.1, 17.0.0.2
Fixed In:
17.1.0, 16.1.4, 15.1.9
Opened: Sep 27, 2021 Severity: 3-Major
The SSO process is disabled for the user session when the webtop resource with APM Single Sign-On (SSO) configuration fails due to unknown reasons.
The BIG-IP Administrator is required to manually release the affected session.
-- Configure Kerberos SSO -- Configure a network resource (the mailbox of a user is configured on an exchange server or an IIS-based web service)
None
SSO is no longer disabled for the entire APM session if Kerberos SSO fails.