Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP SWG
Known Affected Versions:
12.1.2
Fixed In:
12.1.3
Opened: Jun 15, 2017 Severity: 2-Critical
Category Lookup Agent is unable to find the Subject.CN, so it initiates an SSL Handshake failure. ==> /var/log/apm <== crit tmm[11181]: 01790602:2: [C] 10.20.100.1:11980 -> 10.11.10.101:443: (ERR_NOT_FOUND) Error processing URL Classification query from CatEngine
Cannot use Subject.CN as a data source for category lookup agent.
Category Lookup agent configured to use Subject.CN. May also apply if a Category Lookup agent is configured to use SNI, but the client does not send an SNI, resulting in the agent trying to use the Subject.CN.
None.
The category lookup agent is now able to find the Subject.CN.