Bug ID 537498: Oracle Access Manager SSO with client certificates authentication may fail

Last Modified: Nov 22, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
12.0.0

Fixed In:
12.1.0, 12.0.0 HF1

Opened: Aug 04, 2015
Severity: 3-Major

Symptoms

The External Access Manager (eam) plugin may be unable to read a client certificate in a Single Sign On (SSO) configuration.

Impact

A properly configured BIG-IP with OAM SSO will not accept a valid client certificate.

Conditions

BIG-IP v12.0.0 with APM provisioned. A virtual IP is configured with clientssl profile (client certficate setting is 'require'). OAM support enabled, which activates the EAM plug-in.

Workaround

Use another authentication mechanism besides client certificate.

Fix Information

TMM properly passes client certificate data to EAM plug-in.

Behavior Change