Last Modified: Oct 19, 2025
Affected Product(s):
F5OS F5OS, F5OS-A, F5OS-C, Velos
Known Affected Versions:
F5OS-A 1.8.0, F5OS-A 1.8.3, F5OS-C 1.8.0, F5OS-C 1.8.1, F5OS-C 1.8.2
Opened: Feb 25, 2025 Severity: 3-Major
Configuring TLS certificates or keys or CA certificates for LDAP authentication that are larger than 8 KiB does not work, and results in LDAP authentication configuration changes no longer taking effect; LDAP authentication continues with the previous configuration. Log messages such as the following in velos.log or platform.log: authd[11]: priority="Err" version=1.0 msgid=0x3901000000000001 msg="cdb_get failed" ret=-1 confd_errno=21 fmt="/system/aaa/authentication/ldap/tls_cacert".
LDAP authentication does not work and attempts to make further configuration changes (i.e. changing the LDAP servers used for authentication) will not take effect until the issue with the certificates are addressed.
- Configuring LDAP authentication on F5OS - Attempting to configure certificate or key material that is 8 KiB in size or larger, e.g. a large set of CA certificates.
None
None