Bug ID 659424: Deployment failure due to SAML object deletion

Last Modified: Nov 22, 2021

Bug Tracker

Affected Product:  See more info
BIG-IQ Access(all modules)

Known Affected Versions:
5.2.0

Opened: Apr 19, 2017
Severity: 4-Minor

Symptoms

This symptom observed on BIG-IQ is caused by a defect on BIG-IP systems. This defect happens when BIG-IQ attempts to delete unreferenced SAML objects on deployment. When this happens, the deployment will fail, and the following message will be displayed: Failed submitting iControl REST transaction 1487875767493967: status:400, body:{"code":400,"message":"transaction failed:01070734:3: Configuration error: a pm aaa saml-idp-connector: Cannot delete saml-idp-connector /Common/ipd.cooper.local because it is being used by aaa-saml-server (/Common/saml_sp)","errorStack":[],"apiError":1}

Impact

Failure to perform a BIG-IQ deployment.

Conditions

When unreferenced SAML objects are deleted by BIG-IQ at time of deployment.

Workaround

Customers can administer BIG-IP, and remove the unused SAML objects, or reference them by a dummy Access Policy. Alternatively, BIG-IP systems call be upgraded once appropriate hotfixes are available.

Fix Information

None

Behavior Change