Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10
Fixed In:
11.6.0
Opened: Feb 12, 2014 Severity: 2-Critical
If an LDAP server other than Active Directory is configured & selected as an LDAP AAA resource, the 'LDAP Group Resource Assign' macro in the Visual Policy Editor will fail to provide any LDAP groups that the administrator can assign resources to. Also, in the Access Policy :: AAA Servers :: LDAP Resource properties page, when one selects the 'Group' tab, there will be no groups displayed.
Administrators will not be able to use the LDAP Group Mapping functionality unless the backend LDAP server is Active Directory.
An LDAP server other than Active Directory configured as an APM LDAP AAA resource.
There is no workaround at this time other than to use Active Directory if possible.
Any type of LDAP server can now be used for the LDAP Group Mapping feature.