Bug ID 1036285: Enforce password expiry after local user creation

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP All(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2

Fixed In:
17.0.0, 16.1.3

Opened: Jul 26, 2021

Severity: 3-Major

Symptoms

When a local user is created, the password is not expired. [root@bigip1:Active:Standalone] config # chage -l testuser Last password change : Feb 02, 2021 Password expires : never Password inactive : never Account expires : never Minimum number of days between password change : 0 Maximum number of days between password change : 99999 Number of days of warning before password expires : 7

Impact

The new user's password is not set to expired automatically.

Conditions

A local user is created

Workaround

None

Fix Information

When the local user is created, the password is expired.

Behavior Change

When the local user is created, the password is expired. When the user logins for the first time, the password change prompt appears.

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips