Bug ID 573235: IPsec Phase 1 and Phase 2 authentication algorithms default to SHA-1 in the GUI

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP LTM(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2, 12.1.0, 12.1.1, 12.1.2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6

Fixed In:
13.0.0

Opened: Feb 11, 2016

Severity: 3-Major

Symptoms

IPsec Phase 1 and Phase 2 authentication algorithms default to SHA-1 in the GUI.

Impact

The authentication algorithms may be configured as SHA-1 which may not be the best choice for the use case.

Conditions

This happens when configuring IPsec via the GUI.

Workaround

Select the appropriate level of authentication algorithm strength from the pull down menu for the use case.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips