Bug ID 567400: Policy Diff/Merge Does Not Work Correctly For Session Awareness Login Pages

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
11.6.0, 11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Fixed In:
12.1.0, 12.0.0 HF3

Opened: Jan 13, 2016

Severity: 3-Major

Symptoms

When comparing Security Policies with Session Awareness enabled for specific Login Pages, false differences are shown in the Diff. Additionally, attempting to merge policies with these elements does not provide expected enforcement, as the Login Pages will not be enabled correctly in the target policy.

Impact

False differences may appear, and merging them will not provide expected enforcement.

Conditions

A Security Policy with Session Awareness Login Pages are compared with Policy Diff.

Workaround

These elements can be ignored in the Diff Summary before an auto-merge, and handled manually.

Fix Information

Session Awareness Login Pages are now handled correctly in Policy Diff and Merge.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips