Bug ID 496894: TMM may restart when accessing SAML resource under certain conditions.

Last Modified: Dec 10, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4

Fixed In:
12.0.0, 11.6.0 HF5

Opened: Dec 16, 2014
Severity: 2-Critical

Symptoms

When a user performs SAML Identity Provider (IdP)-initiated web single sign-on (Web SSO) using Artifact binding and the Artifact Resolution Service is not configured on IdP, TMM may restart.

Impact

As a result, TMM restarts.

Conditions

This occurs under all of the following conditions: 1. The BIG-IP system is configured as a SAML IdP. 2. The IdP service does not have Artifact Resolution Service configured. 3. The corresponding Service Provider (SP) connector object, which is bound to the IdP, has Artifact binding configured. 4. The SAML Resource from this IdP is published on a webtop.

Workaround

To work around the problem, configure an Artifact Resolution Service and assign it to the IdP object.

Fix Information

An issue where TMM would restart under certain conditions is now fixed.

Behavior Change