Last Modified: Jun 28, 2025
Affected Product(s):
BIG-IP APM
Known Affected Versions:
17.1.2, 17.1.2.1, 17.1.2.2
Fixed In:
17.5.1
Opened: Mar 03, 2025 Severity: 2-Critical
When a OTP challenge is requested on RSA, the Message-Authenticator value in the second request is not corrected/alarmed by the RSA server. Eventually the packet is dropped at the Radius Server.
This causes authentication failures, disrupting the user’s access control process.
The Message-Authenticator attribute radius.messageauthenticator is set to true.
None
None