Operational Defect Database
BugZero found this defect 1067 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1025513
PAM Authenticator can cause authorization failure if it fails to lock /var/log/tallylog
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP TMOS
Affected releases:
14.1.4
14.1.4.1
14.1.4.2
14.1.4.3
14.1.4.4
14.1.4.5
14.1.4.6
14.1.5
14.1.5.1
14.1.5.2
14.1.5.3
14.1.5.4
Fixed releases:
No fixed releases provided.
Description:
Bug ID 1025513: PAM Authenticator can cause authorization failure if it fails to lock /var/log/tallylog ... The following JSON content can be seen in the HTTP 401 response. ... As a result of this issue, you might see the following message: PAM Couldn't lock /var/log/pam/tallylog : Resource temporarily unavailable. ... Impact ... This intermittent auth issue results in the failure of some auth requests. ... Conditions ... High concurrent authentication attempts may trigger this issue. ... For example, opening a connection, using basic authentication, performing a query (for example, get node list, get virtual address list, and set pool min active members), and then closing the connection. ... If done frequently enough, there is an occasional authentication failure. ... Workaround ... Since this is an intermittent authentication failure, wait a few seconds and then attempt to rerun auth request. ... For automation tools, please use token-based authentication.
