Bug ID 781637: ASM brute force counts unnecessary failed logins for NTLM

Last Modified: Oct 06, 2020

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 13.1.0.8, 13.1.1, 13.1.1.2, 13.1.1.3, 13.1.1.4, 13.1.1.5, 14.0.0, 14.0.0.1, 14.0.0.2, 14.0.0.3, 14.0.0.4, 14.0.0.5, 14.0.1, 14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 15.0.0, 15.0.1

Fixed In:
15.1.0, 15.0.1.1, 14.1.2.1, 14.0.1.1, 13.1.3

Opened: May 13, 2019
Severity: 3-Major

Symptoms

False positive brute force violation raised and login request is blocked

Impact

login request blocked by asm policy

Conditions

-- ASM provisioned. -- ASM policy attached to a virtual server. -- ASM Brute force protection enabled for NTLM login type

Workaround

Define higher thresholds in brute force protection settings

Fix Information

asm code has been fixed and do not count unnecessary failed logins for NTLM

Behavior Change