Operational Defect Database
BugZero found this defect 89 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 912277
Users with a role other than admin are unable to run show running-config or list /security
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP TMOS
Affected releases:
15.0.0
15.0.1
15.0.1.1
15.0.1.2
15.0.1.3
15.0.1.4
15.1.0
15.1.0.1
15.1.0.2
15.1.0.3
15.1.0.4
15.1.0.5
Fixed releases:
No fixed releases provided.
Description:
Bug ID 912277: Users with a role other than admin are unable to run show running-config or list /security ... Last Modified: Apr 26, 2024 ... Symptoms ... A lower-privileged user, for instance one with a role of guest or operator, is unable to list configuration in tmsh. ... If the user runs show running-config or list the will see the following: Unexpected Error: Can't display all items, can't get object count from mcpd If the user tries to run list security ip-intelligence fqdn-entity, the following error will occur: 01070823:3: Read Access Denied: user (oper) type (IP intelligence fqdn) ... The user is unable to show running config, list, list security. ... User with a role of guest, operator or anything other role besides admin. ... Workaround ... Be specific with your list/show commands to include the module, component, and properties you are looking for. ... As long as you avoid directly or indirectly calling "list security ip-intelligence fqdn-entity", the command should work.
