Bug ID 567400: Policy Diff/Merge Does Not Work Correctly For Session Awareness Login Pages

Last Modified: May 14, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 11.6.1 HF1, 11.6.1 HF2, 11.6.2, 11.6.2 HF1, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 12.0.0, 12.0.0 HF1, 12.0.0 HF2

Fixed In:
12.1.0, 12.0.0 HF3

Opened: Jan 13, 2016
Severity: 3-Major

Symptoms

When comparing Security Policies with Session Awareness enabled for specific Login Pages, false differences are shown in the Diff. Additionally, attempting to merge policies with these elements does not provide expected enforcement, as the Login Pages will not be enabled correctly in the target policy.

Impact

False differences may appear, and merging them will not provide expected enforcement.

Conditions

A Security Policy with Session Awareness Login Pages are compared with Policy Diff.

Workaround

These elements can be ignored in the Diff Summary before an auto-merge, and handled manually.

Fix Information

Session Awareness Login Pages are now handled correctly in Policy Diff and Merge.

Behavior Change