Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
11.5.2, 11.5.2 HF1
Fixed In:
11.6.0, 11.5.3
Opened: May 29, 2014 Severity: 2-Critical
When trying to deactivate a policy used in a non-default L7 policy, you get the following error, and the policy is deactivated: "MCP Validation error - 01071726:3: Cannot deactivate policy action '/Common/vs126'. It is in use by ltm policy '/Common/l7_policy'." In addition, the virtual server becomes unavailable after the deactivation.
Virtual server is unavailable. ASM policy assigned to the LTM virtual server is broken.
ASM is provisioned. ASM policy is assigned to a non-default L7 policy.
Prior to the deactivation of such an ASM policy, remove it from all L7 policies from the following screen: Local Traffic > Policies > Policy List > <L7_policy_name> > Properties.
The deactivation of an ASM policy that is assigned to a non-default rule in an LTM policy produces a verbose and meaningful error message, and the virtual server is now available after the deactivation.