Operational Defect Database
BugZero found this defect 328 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 977681
Incorrect error message when changing password using passwd
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP AFM
BIG-IP APM
BIG-IP ASM
BIG-IP AVR
BIG-IP BIG-IQ
BIG-IP DNS
BIG-IP GTM
BIG-IP LTM
BIG-IP PEM
BIG-IP SSLO
BIG-IP TMOS
Affected releases:
14.1.0
14.1.0.1
14.1.0.2
14.1.0.3
14.1.0.5
14.1.0.6
14.1.2
14.1.2.1
14.1.2.2
14.1.2.3
14.1.2.4
14.1.2.5
Fixed releases:
No fixed releases provided.
Description:
Severity: 4-Minor ... Symptoms ... When using the 'passwd' utility from the command line to change a user password, the error message on why the new password is not accepted is wrong. ... Instead of the actual reason why the new password is not accepted, the following message is printed: "passwd.bin: Have exhausted maximum number of retries for service" ... Impact ... The real reason why the new password is not accepted is masked by the default error message: "passwd.bin: Have exhausted maximum number of retries for service" ... Conditions ... - Using the 'passwd' utility from the command line to change a user password. - The new password is not accepted according to the configured tmsh auth password-policy. ... Workaround ... Instead of using the command line 'passwd' utility, change the user password using tmsh. ... With tmsh, the real reason why a new password is not accepted is printed accurately: root@(bigip)(cfg-sync Standalone)(Active)(/Common)(tmos)# modify auth password roo...
