Bug ID 541550: Defining more than 10 remote-role groups can result in authentication failure

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
11.6.0, 11.6.1, 11.6.2, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 13.0.0

Fixed In:
13.1.0, 13.0.0 HF1, 12.1.2 HF1, 11.6.3

Opened: Aug 24, 2015

Severity: 4-Minor

Symptoms

Authentication fails, indicating the affected user is associated with an "unknown" role: notice httpd[2112]: pam_bigip_authz: authenticated user bob with role 12345678 ([unknown]) in partition /bin/false

Impact

User cannot authenticate.

Conditions

Define more than 10 remote-role groups and authenticate with a user having more than 10 roles.

Workaround

None.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips