Bug ID 639283: Custom Dialer/Windows logon integration doesn't work against Virtual Server with untrusted SSL certificate

Last Modified: May 14, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3

Fixed In:
13.1.0, 13.0.1, 12.1.3.4

Opened: Jan 13, 2017
Severity: 3-Major

Symptoms

Custom Dialer/Windows logon integration doesn't work against Virtual Server with untrusted SSL certificate

Impact

Windows logon integration doesn't work. Cannot establish secure VPN connection before logging in to the machine. Custom dialer doesn't work. Cannot establish secure VPN using Dial-up entry.

Conditions

* Virtual Server has untrusted certificate * Using Custom Dialer or Windows logon integration features on client machine for establishing secure VPN

Workaround

- Install trusted certificate to Virtual Server or whitelist untrusted certificate on the client machine. or - Use Edge Client to establish secure VPN connection.

Fix Information

The Custom Dialer/Windows Logon Integration feature now shows a certificate warning when the certificate is untrusted by the client. This allows the logon to proceed if the user accepts the certificate.

Behavior Change