Last Modified: Apr 28, 2025
Affected Product(s):
F5OS (all modules)
Fixed In:
F5OS-C 1.8.0, F5OS-A 1.8.0
Opened: Sep 21, 2023 Severity: 3-Major
Admin can create a user with 'tenant-console' as its primary role from the ConfD CLI. This may create tenant console access issues if a tenant gets created with the same name as the user. The 'tenant-console' role is only for tenant and a new user with 'tenant-console' role cannot be created.
Console access to the tenant (with the same name as a user, which is created earlier with tenant-console role) won't be working.
Admin has created a user with the 'tenant-console' role and then created a tenant with the same name as the 'tenant-console' user.
None
Added a warning to be displayed during user creation with the 'tenant-console' role from ConfD CLI. Example: appliance-1(config)# system aaa authentication users user test_1 config role tenant-console appliance-1(config-user-test_1)# commit Aborted: 'system aaa authentication users user test_1 config role': tenant-console role cant be assigned to users other than tenant users.