Last Modified: Sep 14, 2023
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 14.1.2.8, 14.1.3, 14.1.3.1, 14.1.4, 14.1.4.1, 14.1.4.2, 14.1.4.3, 14.1.4.4, 14.1.4.5, 14.1.4.6, 14.1.5, 14.1.5.1, 14.1.5.2, 14.1.5.3, 14.1.5.4, 14.1.5.6
Fixed In:
15.0.0
Opened: Jan 08, 2019 Severity: 4-Minor
When Security Cloud Services and Centralized Device ID are enabled, the clients may be blocked from accessing the site if there is no connectivity to the Cloud Services. There is no indication of these failures.
Connectivity fails with no indication of the failure. Administrators cannot monitor users getting blocked due to connectivity failures with the Cloud Services.
-- Security Cloud Services are enabled. -- Centralized Device ID is enabled. -- Device ID is enabled on a Bot Defense profile. -- There is no connectivity between clients and the Cloud Services.
None.
There is now an indication in the Bot Defense Request Log when clients are blocked due to 'Cloud connectivity failure'. This appears in the 'Challenge Failure Reason' field.