Last Modified: May 29, 2024
Affected Product(s):
BIG-IP TMOS
Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 15.0.0, 15.0.1
Fixed In:
15.1.0, 15.0.1.1, 14.1.2.1
Opened: May 20, 2019 Severity: 3-Major
Upgrade support for DB variable to attach AJAX payload to vToken cookie sets 'send in alerts' flag configured on parameters without checking whether automatic transaction detection is turned on on the URL.
After upgrade, the configuration fails to load due to an error during schema change validation
-- BIG-IP version 13.1.x or 14.0.x -- A protected URL is configured with automatic transaction detection turned off. -- A parameter on that URL is configured with all flags turned off. -- The DB variable antifraud.internalconfig.flag1 is set to 'enabled' value. -- Upgrade to 13.1.x or later (with load config) started.
-- Set the DB variable antifraud.internalconfig.flag1 value to 'disabled' before the upgrade. -- Configure 'send in alerts' flag on the parameters manually.
Now upgrade support takes into consideration the automatic transaction detection flag on URL and sets 'send in alerts' flag on URL parameters only for URLs with automatic transaction detection turned on.