Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP Install/Upgrade, TMOS
Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5
Fixed In:
15.0.0, 14.1.0.6
Opened: Jan 11, 2019 Severity: 2-Critical Related Article:
K54339562
You are unable to log into the BIG-IP system using an LDAP account. The system might log the following message in /var/log/secure: -- crit httpd[28010]: pam_ldap(httpd:account): buffer 'buffer_size' too small. Note: This message might not be logged for all occurrences of this issue.
LDAP authentication not working properly.
This occurs when the following conditions are met: -- Remote-LDAP authentication is configured. -- There is a user account with attributes longer than 255 characters in length. -- That user attempts a logon to the BIG-IP system.
Configure user accounts with attributes shorter than 255 characters.
LDAP authentication and authorization now succeeds for users under these conditions.