Bug ID 452527: Machine Certificate Checker Agent always works in "Match Subject CN to FQDN" mode

Last Modified: Oct 07, 2023

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Fixed In:
12.0.0, 11.6.0, 11.5.3 HF2

Opened: Mar 17, 2014

Severity: 3-Major

Related Article: K17178

Symptoms

Limited/normal user cannot pass Machine Cert Auth through 'Successful' branch if Agent is configured to match certificate by any condition except Match FQDN.

Impact

User cannot pass Machine Cert Authorization.

Conditions

Machine Cert Auth agent configured to match certificate by any condition except Match FQDN. Current user has no rights to access private key directly (that means elevation or service is required).

Workaround

None

Fix Information

Fixed issue that caused Machine Cert Checker service to always work in "Match Subject CN to FQDN" mode.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips