Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
12.0.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
12.1.0, 12.0.0 HF1
Opened: Aug 04, 2015 Severity: 3-Major
The External Access Manager (eam) plugin may be unable to read a client certificate in a Single Sign On (SSO) configuration.
A properly configured BIG-IP with OAM SSO will not accept a valid client certificate.
BIG-IP v12.0.0 with APM provisioned. A virtual IP is configured with clientssl profile (client certficate setting is 'require'). OAM support enabled, which activates the EAM plug-in.
Use another authentication mechanism besides client certificate.
TMM properly passes client certificate data to EAM plug-in.