Bug ID 1137341

Bug Tracker
ID 1137341

Bug ID 1137341: LDAPS server group and StartTLS should be mutually exclusive

Last Modified: Apr 28, 2025

Affected Product(s):
F5OS Velos(all modules)

Known Affected Versions:
F5OS-A 1.1.1

Fixed In:
F5OS-A 1.4.0

Opened: Aug 17, 2022

Severity: 3-Major

Symptoms

If an LDAPS server group is specified with LDAP settings that specify StartTLS, LDAP authentication will not function.

Impact

LDAP authentication will not function.

Conditions

LDAPS server group configured with LDAP settings specifying StartTLS.

Workaround

Do not configure an LDAP server group as type "LDAP over SSL" and also set the LDAP "TLS" setting to "StartTLS". Set the LDAP server group to "LDAP over TCP" if the LDAP "TLS" setting is "StartTLS".

Fix Information

None

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips