Last Modified: Sep 14, 2023
Affected Product(s):
BIG-IP FPS
Known Affected Versions:
13.1.1, 13.1.1.2, 13.1.1.3, 13.1.1.4, 13.1.1.5, 13.1.3, 13.1.3.1, 13.1.3.2, 13.1.3.3, 13.1.3.4, 13.1.3.5, 13.1.3.6, 13.1.4, 13.1.4.1, 13.1.5, 13.1.5.1, 14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.0.1.1, 14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5, 14.1.5.1, 14.1.5.2, 14.1.5.3, 14.1.5.4, 14.1.5.6
Fixed In:
15.0.0
Opened: Nov 08, 2018 Severity: 4-Minor
A secure channel cookie lifetime must be greater than or equal to other cookies lifetime. The BIG-IP system GUI does not show non-DataSafe cookies, so there is no way to change their lifetime setting, if needed.
The save operation fails with the error message: Results in an error: Save Failed: 01071a07:3: The lifetime of Malware forensics cookie should be less than or equal to the lifetime of Secure channel cookie in the Anti-Fraud profile '/Common/test'. The secure-channel cookie lifetime cannot be lowered using the GUI; you must use tmsh to do so.
-- In tmsh, specify a secure-channel cookie lifetime value. -- In the GUI, set the non-DataSafe cookie lifetime to a value that is greater than the secure-channel cookie lifetime. -- Save the configuration.
Use tmsh to change the cookie's lifetime value.
None