Bug ID 1486697: Configuring Expiry-status of root and admin users should not be allowed

Last Modified: Oct 21, 2024

Affected Product(s):
F5OS F5OS-A, F5OS-C(all modules)

Known Affected Versions:
F5OS-A 1.5.1

Fixed In:
F5OS-A 1.8.0, F5OS-A 1.5.2

Opened: Jan 10, 2024

Severity: 3-Major

Symptoms

Expiry-status of root and admin users are allowed to be configured and there is a chance of locking out these users.

Impact

There is a chance that default users, such as root and admin, become locked out.

Conditions

If Expiry-status of any root or admin user is marked as Locked, that root or admin user cannot log in to the system.

Workaround

None

Fix Information

You cannot edit the ‘Expiry-status’ field in webUI for admin and root users. Thus, it cannot be configured. The 'Expiry-status' field for root and admin users will now always display the default value as 'Enabled'.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips