Last Modified: Nov 07, 2022
Affected Product:
See more info
BIG-IP TMOS
Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1
Fixed In:
13.1.0, 12.1.5
Opened: Apr 13, 2017
Severity: 2-Critical
1. Authentication failed for REST user, instead of prompt to renew the password. 2. Authentication is down briefly.
1. Core log is dumped. 2. Authentication is down briefly.
1. REST API is used. 2. User password is expired.
There is no workaround at this time.
Request to /mgmt/shared/authn/login with a user with an expired password returns a 401 and a response asking the user to change their password using basic auth.
