Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.6.2 HF1, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.6.0, 11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
12.0.0, 11.6.0 HF4, 11.5.1 HF6, 11.4.1 HF9
Opened: Aug 19, 2014 Severity: 3-Major
_lastUseTime in APM OAM ObSSOCookie is not updated after the user is authenticated using ObSSOCookie. This results in ObSSOCookie expiring prematurely.
With ObSSOCookie gets expired prematurely and authentication with ObSSOCookie fails, User is asked to submit credentials for authentication.
User is already authenticated and provided with an ObSSOCookie.
No known workaround
Issue Fixed. _lastUseTime in OAM ObSSOCookie is updated on successful authentication and authorization process.