Bug ID 563393: Access profile attributes update may take effect immediately

Last Modified: Apr 19, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6

Opened: Dec 16, 2015
Severity: 3-Major

Symptoms

When profile access attributes are updated, the "Apply Access Policy" link will be displayed. However, the attributes that are used by TMM will take effect immediately without clicking the "Apply Access Policy" link.

Impact

Admin needs to click the "Apply Access Policy" link even though the updated attributes already take effect.

Conditions

When the following access profile attributes are updated, the changes will be effective immediately: 1. Inactivity Timeout 2. Access Policy Timeout 3. Maximum Session Timeout 4. Minimum Authentication Failure Delay 5. Maximum Authentication Failure Delay 6. Max Concurrent Users 7. Max Sessions Per User 8. Max In Progress Sessions Per Client IP 9. Domain Cookie 10. Restrict to Single Client IP 11. Use HTTP Status 503 for Error Pages 12. User Identification Method 13. Logout URI Include 14. Logout URI Timeout 15. Microsoft Exchange 16. OAuth Profile 17. SSO Configuration 18. Domain Mode 19. Cookie Options: Secure 20. Cookie Options: Persistent 21. Cookie Options: HTTP Only 22. Primary Authentication URI 22. NTLM Auth Configuration

Workaround

None

Fix Information

None

Behavior Change