Last Modified: Sep 13, 2023
Known Affected Versions:
11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.6.2 HF1, 11.4.1, 11.6.0, 11.6.1, 11.6.2, 11.6.3, 184.108.40.206, 220.127.116.11, 18.104.22.168, 22.214.171.124, 11.6.4, 11.6.5, 126.96.36.199, 188.8.131.52, 184.108.40.206, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
12.0.0, 11.6.0 HF5, 11.5.1 HF6
Opened: Jul 11, 2014 Severity: 4-Minor Related Article:
Related Article: K16952
When URLs from multiple browser tabs start an access policy, the session is created with the landing URL from the first tab that started the session, not with URL that continued and finished creating the access session.
This may cause BIG-IP as SAML SP unable to establish a session with IdP. In the case of LTM and APM, the user is always redirected to the URL from first tab after policy execution finishes.
Accessing the access policy VIP with different landing URLs before access policy session created. This causes the access policy to run from two different landing URLs.
When URLs from multiple browser tabs start an access policy, the landing URL is set to the URL from the browser that finished the access policy execution.