Bug ID 860473: Connection and read timeout settings for the TACACS+ authentication provider

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IQ Platform(all modules)

Known Affected Versions:
6.0.1,,, 6.1.0, 7.0.0,,, 7.1.0

Fixed In:

Opened: Dec 12, 2019
Severity: 3-Major


The TACACS+ authentication provider uses a fixed, hard-coded value (5 seconds) for the timeout to get a response from the TACACS+ server. If a request to the TACACS+ server to authenticate a user or to retrieve the user properties does not complete within 5 seconds, the request fails. This causes the BIG-IQ authentication of a remote TACACS+ user to fail as well.


TACACS+ user authentication to BIG-IQ fails.


When you use a TACACS+ authentication provider to authenticate to BIG-IQ and the TACACS+ server is too slow, it will probably time out before you get authenticated.



Fix Information

You can now configure the connection timeout and read timeout settings.

Behavior Change