Bug ID 781637: ASM brute force counts unnecessary failed logins for NTLM

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
13.1.0, 13.1.0.1, 13.1.0.2, 13.1.0.3, 13.1.0.4, 13.1.0.5, 13.1.0.6, 13.1.0.7, 13.1.0.8, 13.1.1, 13.1.1.2, 13.1.1.3, 13.1.1.4, 13.1.1.5

Fixed In:
15.1.0, 15.0.1.1, 14.1.2.1, 14.0.1.1, 13.1.3

Opened: May 13, 2019

Severity: 3-Major

Symptoms

False positive brute force violation raised and login request is blocked

Impact

login request blocked by asm policy

Conditions

-- ASM provisioned. -- ASM policy attached to a virtual server. -- ASM Brute force protection enabled for NTLM login type

Workaround

Define higher thresholds in brute force protection settings

Fix Information

asm code has been fixed and do not count unnecessary failed logins for NTLM

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips