Bug ID 584603: TMSH allows readdition of a device already in the trust

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP TMOS(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Opened: Mar 31, 2016

Severity: 3-Major


A device that is already in the device trust can be re-added by repeating the TMSH command. This can be a 'back door' way to rename the device in the trust and may cause errors in the trust if the rename assigns a duplicate name.


Can disrupt connections in the trust over which configuration is synchronized.


Use of the TMSH command 'modify cm trust-domain' to rename a device already in the trust.


Don't use the 'modify cm trust-domain' command as a way to rename the device. To rename a device, use the 'mv cm device' command.

Fix Information


Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips