Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP LTM
Known Affected Versions:
11.6.0, 12.0.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
12.1.0, 12.0.0 HF1, 11.6.1
Opened: Aug 07, 2015 Severity: 3-Major Related Article:
K17505
SSO token login does not work due to remote role update failures.
Incorrect role assignment causing SSO login to not work. The system posts messages similar to the following: -- notice mcpd[6165]: 01070829:5: Input error: Remote user message dropped (adm184789 in [All]) because duplicate partition. -- err mcpd[6165]: 01070827:3: User login disallowed: User (adm184789) is not an administrator, does not have a UID of zero, and has not been assigned a role on a partition.
SSO between Enterprise Manager (EM) and a BIG-IP system using a third party authentication system, such as LDAP.
Login using remote user credentials on the BIG-IP system. This properly updates the role for the remote user.
SSO token login now works with the correct role assignments to a remote user.