Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 11.6.1 HF1, 11.6.1 HF2, 11.6.2, 11.6.2 HF1, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.0.0 HF2
Fixed In:
12.1.0, 12.0.0 HF3
Opened: Oct 19, 2015 Severity: 3-Major
While authenticating with a third party IdP site, the site may show a message indicating that the cookie sent from client was invalid.
Edge Client is redirected to IdP site and the site displays a message indicating that the cookie was invalid or that there was a problem with the cookie. User is not prompted for authentication credentials on the IdP.
All of the following conditions should be met. - User connects using Edge Client, disconnects and then attempts to connect again. - APM is using SAML authentication with a third party IdP - IdP uses multiple cookies to identify user session
Restart Edge Client before connecting again.
Session cookies are now cleaned up properly when user explicitly disconnects BIG-IP Edge Client.