Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.6.2 HF1, 11.4.1
Fixed In:
11.6.0, 11.5.1 HF5
Opened: Mar 21, 2014 Severity: 3-Major Related Article:
K15913
The RBA plugin sends a reset when attempting to access a secondary authentication domain: /var/log/ltm: Internal error (APM::RBA requested abort (trans end error))
Multidomain SSO is effectively unusable, since you can only access the primary domain.
Any configuration of LTM+APM multidomain SSO seems to be affected. Forward proxy deployments, such as Secure Web Gateway, do not appear to be affected.
There is no workaround at this time. Single-domain authentication still works.
Multidomain SSO no longer resets on secondary authentication domains.