Bug ID 871505: Update default anti-fraud profile with new per-request policy logon page URL

Last Modified: Dec 13, 2023

Affected Product(s):
BIG-IP APM(all modules)

Known Affected Versions:
15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3

Fixed In:
16.0.0

Opened: Jan 20, 2020

Severity: 3-Major

Symptoms

Cannot access an application that is protected by APM and FPS.

Impact

You cannot get access to the application.

Conditions

When DataSafe logon protection is enabled with per-request policy added on virtual server.

Workaround

Add the URL /subsession_logon_submit.php3* to the access-logonpage-protection-datasafe profile.

Fix Information

Fixed an issue with per-request logon policy.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips