Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP APM
Fixed In:
13.0.0
Opened: Aug 12, 2016 Severity: 4-Minor
IE11 modifies the HTTP method from GET to POST after certificate warning ERROR_INTERNET_SEC_CERT_ERRORS.
This behavior fails the protocol and AS responds with invalid_request due to missing response_type in POST body.
When IE11 is used in conjunction with BIGIP OAuth Client and OAuth AS clientssl profile is using untrusted certificate.
Avoid untrusted certificate in OAuth AS clientssl profile.
Functions as designed.