Bug ID 537498: Oracle Access Manager SSO with client certificates authentication may fail

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
12.0.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Fixed In:
12.1.0, 12.0.0 HF1

Opened: Aug 04, 2015

Severity: 3-Major

Symptoms

The External Access Manager (eam) plugin may be unable to read a client certificate in a Single Sign On (SSO) configuration.

Impact

A properly configured BIG-IP with OAM SSO will not accept a valid client certificate.

Conditions

BIG-IP v12.0.0 with APM provisioned. A virtual IP is configured with clientssl profile (client certficate setting is 'require'). OAM support enabled, which activates the EAM plug-in.

Workaround

Use another authentication mechanism besides client certificate.

Fix Information

TMM properly passes client certificate data to EAM plug-in.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips