Last Modified: Jan 06, 2023
See more info
Known Affected Versions:
15.1.0, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 15.1.1, 15.1.2, 22.214.171.124, 15.1.3, 126.96.36.199, 15.1.4, 188.8.131.52, 15.1.5, 184.108.40.206, 15.1.6, 220.127.116.11, 15.1.7, 15.1.8, 18.104.22.168
Opened: Oct 20, 2022
The OAuth protocol requires that the APM perform a loopback call to itself in order to pull details of a user. The packets sent by APM when sent over _loopback VLAN are being rejected by the default AFM rule. The _loopback is a non-configurable VLAN in firewall rules.
The OAuth virtual server is not working.
-- APM is enabled. -- AFM is enabled.
The _loopback is a non-configurable VLAN in firewall rules. Recommended workaround is to block all user-configured VLANs in the penultimate rule and then allow all in the last rule. This is less than ideal and would be prone to user error.