Operational Defect Database
BugZero found this defect 1577 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 872165
LDAP remote authentication for REST API calls may fail during authorization
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP TMOS
Affected releases:
14.1.0
14.1.0.1
14.1.0.2
14.1.0.3
14.1.0.5
14.1.0.6
14.1.2
14.1.2.1
14.1.2.2
14.1.2.3
14.1.2.4
14.1.2.5
Fixed releases:
No fixed releases provided.
Description:
Bug ID 872165: LDAP remote authentication for REST API calls may fail during authorization ... Last Modified: Apr 26, 2024 ... Clients receive 401 Unauthorized messages and /var/log/restjavad.x.log may report messages similar to the following: -- [I][1978][26 Mar 2021 13:23:36 UTC][8100/shared/authn/login AuthnWorker] User remoteuser failed to login from 192.0.2.1 using the tmos authentication provider -- [WARNING][807][26 Mar 2021 14:43:24 UTC][RestOperationIdentifier] Failed to validate Authentication failed. ... Impact ... Unable to authenticate as remote-user for access that uses authorization, like REST API calls. ... Conditions ... LDAP (or Active Directory) remote authentication configured with a User Template instead of a Bind Account. ... Workaround ... You can use either of the following workarounds: -- Configure LDAP/AD remote authentication to utilize a Bind account instead of the User Template. -- Create a local user account for each remote user, allowing local authoriz...
