Last Modified: Jun 19, 2025
Affected Product(s):
F5OS Velos
Known Affected Versions:
F5OS-A 1.8.0, F5OS-C 1.6.0, F5OS-C 1.6.1, F5OS-C 1.6.2, F5OS-C 1.8.0
Fixed In:
F5OS-C 1.8.1
Opened: May 17, 2024 Severity: 3-Major
The first time a remote user attempts to login to a system, the access is denied despite providing the correct credentials. This is true for both TACACS or RADIUS remote users.
The first login fails. Subsequent remote login attempts succeed with proper credentials.
This happens always. A way to simulate the first login is to delete the file /etc/libnss-udr/passwd.
Attempt renote login again.
The user now can login with proper credentials from the first attempt. Note that the fix involves having the following version of openssh (or newer): # rpm -q openssh openssh-7.4p1-21.F5.6.2.7.el7.x86_64