Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP TMOS
Known Affected Versions:
12.1.2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1
Fixed In:
13.1.0, 12.1.5
Opened: Apr 13, 2017 Severity: 2-Critical
1. Authentication failed for REST user, instead of prompt to renew the password. 2. Authentication is down briefly.
1. Core log is dumped. 2. Authentication is down briefly.
1. REST API is used. 2. User password is expired.
There is no workaround at this time.
Request to /mgmt/shared/authn/login with a user with an expired password returns a 401 and a response asking the user to change their password using basic auth.