Bug ID 687894: Intermittent session-deletion error while performing Kerberos authentication

Last Modified: Jan 16, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 11.6.1 HF1, 11.6.1 HF2, 11.6.2, 11.6.2 HF1, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4

Opened: Oct 09, 2017
Severity: 3-Major

Symptoms

When restrict_irule_events is disabled and rotatesessionid sys db variable is turned on, the following error is seen in /var/log/apm: debug apd[15051]: 01490000:7: AccessPolicyD.cpp func: "process_request()" line: 831 Msg: ** done with the request processing ** notice tmm[21212]: 01490567:5: 3b831892: Session deleted (security_check)

Impact

APM end user cannot take successful branch in access policy.

Conditions

- Disable restrict_irule_events. - Turn on rotatesessionid (by default, it is on). - Kerberos Auth agent is included in access policy.

Workaround

Turn off rotatesessionid sys db variable.

Fix Information

None

Behavior Change