Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3
Fixed In:
12.0.0, 11.6.0 HF4, 11.5.1 HF6, 11.4.1 HF9
Opened: Aug 19, 2014 Severity: 3-Major
_lastUseTime in APM OAM ObSSOCookie is not updated after the user is authenticated using ObSSOCookie. This results in ObSSOCookie expiring prematurely.
With ObSSOCookie gets expired prematurely and authentication with ObSSOCookie fails, User is asked to submit credentials for authentication.
User is already authenticated and provided with an ObSSOCookie.
No known workaround
Issue Fixed. _lastUseTime in OAM ObSSOCookie is updated on successful authentication and authorization process.