Bug ID 1067117: Changes to LDAP AAA pool are not synced properly with Policy Sync.

Last Modified: Jun 02, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5

Opened: Dec 09, 2021
Severity: 3-Major

Symptoms

When an admin adds a member to a pool that is used in an LDAP AAA object, the changes are not synced properly with Policy Sync. With the Location Specific property enabled, Policy Sync creates a node on the destination device is an error. With the Location Specific property disabled, Policy Sync creates a node on the destination device, but does not create a pool member in the AAA pool.

Impact

Changes to LDAP AAA objects are not synced as expected with Policy Sync.

Conditions

-- LDAP AAA object present in Access Policy -- Access Policy synced with Policy Sync

Workaround

Manually update the AAA pool on the destination device as required.

Fix Information

None

Behavior Change