Bug ID 759654: LDAP remote authentication with remote roles and user-template failing

Last Modified: May 23, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.4, 14.1.0.5

Opened: Feb 26, 2019
Severity: 3-Major

Symptoms

The directory server that performs authentication requests refuses a query for authorization (user attributes), which prevents the user from logging on with remote authentication.

Impact

The query request sent to the directory server is refused because the password is not included in the request and the server will not accept an anonymous bind request. The refused request prevents a lookup of the user attributes on the directory server. As a result, the user cannot logon.

Conditions

In version 14.1, configure LDAP remote authentication with remote roles and a user template. As a remote user, attempt to logon.

Workaround

Use bind-dn to authenticate against LDAP server.

Fix Information

None

Behavior Change