Bug ID 658417: REST: Failure to authenticate/renew user who is using expired password

Last Modified: Jun 21, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1

Fixed In:
13.1.0

Opened: Apr 13, 2017
Severity: 2-Critical

Symptoms

1. Authentication failed for REST user, instead of prompt to renew the password. 2. Authentication is down briefly.

Impact

1. Core log is dumped. 2. Authentication is down briefly.

Conditions

1. REST API is used. 2. User password is expired.

Workaround

There is no workaround at this time.

Fix Information

Request to /mgmt/shared/authn/login with a user with an expired password returns a 401 and a response asking the user to change their password using basic auth.

Behavior Change