Last Modified: Nov 06, 2024
Affected Product(s):
F5OS Velos
Known Affected Versions:
F5OS-A 1.2.0, F5OS-A 1.3.0, F5OS-A 1.3.1, F5OS-A 1.3.2, F5OS-C 1.5.0, F5OS-C 1.5.1
Fixed In:
F5OS-C 1.6.0, F5OS-A 1.7.0, F5OS-A 1.5.0
Opened: Nov 03, 2022 Severity: 3-Major
-- System fails to change password and renders system in a degraded state where user management no longer works. -- System fails to provide proper user feedback to the user about failed password changes. As per testing, user password change either times out or fails with application communication failure, depending on 'system aaa password-policy config retries' value. When 'system aaa password-policy config retries 0' -> the error is "application timeout". When 'system aaa password-policy config retries 3' -> the error is "application communication failure". Note : On 1.5.0, the issue is fixed when 'retries' value is configured for values equal or greater than 2
F5OS user password cannot be changed.
Changing 'system aaa password-policy config retries' from the default
Change 'system aaa password-policy config retries' back to the default: system aaa password-policy config retries 3
N/A