Last Modified: Nov 07, 2022
Affected Product:
See more info
BIG-IQ Platform
Known Affected Versions:
6.0.1, 6.0.1.1, 6.0.1.2, 6.1.0, 7.0.0, 7.0.0.1, 7.0.0.2, 7.1.0
Fixed In:
7.1.0.1
Opened: Dec 12, 2019
Severity: 3-Major
The TACACS+ authentication provider uses a fixed, hard-coded value (5 seconds) for the timeout to get a response from the TACACS+ server. If a request to the TACACS+ server to authenticate a user or to retrieve the user properties does not complete within 5 seconds, the request fails. This causes the BIG-IQ authentication of a remote TACACS+ user to fail as well.
TACACS+ user authentication to BIG-IQ fails.
When you use a TACACS+ authentication provider to authenticate to BIG-IQ and the TACACS+ server is too slow, it will probably time out before you get authenticated.
N/A
You can now configure the connection timeout and read timeout settings.
