Last Modified: Apr 11, 2024
Affected Product(s):
BIG-IP All
Known Affected Versions:
11.6.1, 11.6.2, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2, 12.1.0, 12.1.1, 12.1.2
Fixed In:
13.0.0, 12.1.3, 11.6.3
Opened: Jan 19, 2016 Severity: 3-Major
When you create a user with Auditor role, and login using the Auditor role to execute "list sys crypto" command, you will get the error message like: "Unexpected Error: Can't chmod key management directory: "/var/tmp/key_mgmt", error: [1] Operation not permitted".
A use with Auditor role can not execute "list sys crypto" command.
A root/admin user create a user with Auditor role, and login using the Auditor role to execute "list sys crypto" command.
1. Change the security context by using "chcon": ******************************************** [root@eng-3900A:Active:Disconnected] tmp # chcon -u root -r object_r /var/tmp/key_mgmt/ [root@eng-3900A:Active:Disconnected] tmp # ls -lZ | grep key_mgmt drwxr-xr-x. root root root:object_r:tmp_t:s0 key_mgmt
None