Last Modified: Jul 22, 2021
See more info
Known Affected Versions:
6.0.1, 184.108.40.206, 220.127.116.11, 6.1.0, 7.0.0, 18.104.22.168, 22.214.171.124, 7.1.0
Opened: Dec 12, 2019
The TACACS+ authentication provider uses a fixed, hard-coded value (5 seconds) for the timeout to get a response from the TACACS+ server. If a request to the TACACS+ server to authenticate a user or to retrieve the user properties does not complete within 5 seconds, the request fails. This causes the BIG-IQ authentication of a remote TACACS+ user to fail as well.
TACACS+ user authentication to BIG-IQ fails.
When you use a TACACS+ authentication provider to authenticate to BIG-IQ and the TACACS+ server is too slow, it will probably time out before you get authenticated.
You can now configure the connection timeout and read timeout settings.