For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

gabridip_sin's avatar
gabridip_sin
Icon for Nimbostratus rankNimbostratus
Apr 01, 2021

DoFirepassLogin (0xfffff82e) EXCEPTION

I'm configuring the f5 VPN on a server with Debian 10.

I have installed the cacert, and the f5 client.

 

I try to connect with both (they have the same effect):

f5fpc -s -t HOST -u USER -p PASS -d /usr/local/share/ca-certificates/ -x

or

f5fpc -s -t HOST -u USER -p PASS -d /usr/local/share/ca-certificates/ -x -n "NAME"

On standalone.log file I have this:

2021-04-01,10:52:02:042, 626,1306,standalone, 48, /UChannelChain.cpp, 55, , enter, 0x7: U_ENABLE_SOCKET_CHANNEL U_ENABLE_SSL_CHANNEL U_ENABLE_PROXY_CHANNEL
2021-04-01,10:52:02:042, 626,1306,standalone, 48,,,, USSLChannel::USSLChannel:RAND_status(1)
2021-04-01,10:52:02:042, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 22
2021-04-01,10:52:02:042, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 0
2021-04-01,10:52:02:052, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 23
2021-04-01,10:52:02:052, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 0
2021-04-01,10:52:02:052, 626,1306,standalone, 48, /USSLChannel.cpp, 261, , socket receive timeout set (seconds), 30
2021-04-01,10:52:02:052, 626,1306,standalone, 48,,,, USSLChannel::Open() - select return 1
2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 1
2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 43, CLinuxEventHandler::HandleEvent(), EVENT_TYPE_SELECT_CLIENT_CERT
2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 3
2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 35, CLinuxEventHandler::HandleEvent(), enter, 1
2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 43, CLinuxEventHandler::HandleEvent(), EVENT_TYPE_SELECT_CLIENT_CERT
2021-04-01,10:52:02:064, 626,1306,standalone, 48, /LinuxEventHandler.cpp, 68, CLinuxEventHandler::HandleEvent(), exit with, 3
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UHTTP.cpp, 113, UHTTP::makeRequest(), server HTTP code, 200
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UHTTP.cpp, 129, UHTTP::makeRequest(), bytes to read, 5183
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UFirepass.cpp, 678, UFirepass::doGetRequestWithoutRedirect, server returned HTTP code, return code, 200, 0
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #2. Stats (0) - Recv=13994 Send=1210
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #1. Stats (0) - Recv=8070 Send=941
2021-04-01,10:52:02:086, 626,1306,standalone, 1, /UFirepass.cpp, 1308, DoFirepassLogin, (0xfffff82e) EXCEPTION - logon failed
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #2. Stats (0) - Recv=2714 Send=2976
2021-04-01,10:52:02:086, 626,1306,standalone, 48, /UChannelChain.cpp, 34, , destroying channel #1. Stats (0) - Recv=2430 Send=1824
2021-04-01,10:52:02:086, 626,1306,standalone, 1, /UFirepass.cpp, 1317, , EXCEPTION caught: UFirepass::DoFirepassLogin - EXCEPTION
2021-04-01,10:52:02:086, 626,1306,standalone, 0,,,, Logon failed
2021-04-01,10:52:02:086, 626,1306,standalone, 48, , 723, DoLogin, Login attempt to server (xxxxxxxxxxxxxxxxxxxxxxxxx) failed - access denied.
2021-04-01,10:52:02:086, 626,1306,standalone, 1, , 758, CSessionHandler::session_thread_loop(), DoFirepassLogin() = -2002, Session status: 7.

 

I have made many attempts, the user and password are right (they work on a windows machine).

 

On the windows machine I have this config.f5c

 

<?xml version="1.0" encoding="UTF-8"?>
<PROFILE VERSION="2.0">
<SERVERS TRUSTED="YES">
<SITEM>
 <ADDRESS>HOST</ADDRESS>
 <ALIAS>NAME</ALIAS>
 <SAVEPASSWORDS>YES</SAVEPASSWORDS>
</SITEM>
</SERVERS>
<SESSION LIMITED="YES">
 <STAYCONNECTED>YES</STAYCONNECTED>
 <RECONNECTIONS>5</RECONNECTIONS>
 <SAVEONEXIT>YES</SAVEONEXIT>
 <SAVEPASSWORDS>NO</SAVEPASSWORDS>
 <REUSEWINLOGONCREDS>NO</REUSEWINLOGONCREDS>
 <REUSEWINLOGONSESSION>NO</REUSEWINLOGONSESSION>
 <PASSWORD_POLICY>
  <MODE>DISK</MODE>
  <TIMEOUT>240</TIMEOUT>
 </PASSWORD_POLICY>
 <UPDATE>
  <MODE>YES</MODE>
 </UPDATE>
</SESSION>
<LOCATIONS>
 <CORPORATE>
 </CORPORATE>
</LOCATIONS>
<UI>
 <CUSTOMIZE>
  <LANGUAGE>
  </LANGUAGE>
 </CUSTOMIZE>
</UI>
</PROFILE>

 

 

Any idea?

application delivery
BIG-IP
security

2 Replies

  • gabridip_sin's avatar
    gabridip_sin
    Icon for Nimbostratus rankNimbostratus
    Apr 01, 2021

    The version of the client is:

    BIG-IP Edge Command Line Client version 7185.2021.0108.1

     

  • boneyard's avatar
    boneyard
    Icon for MVP rankMVP
    Apr 11, 2021

    do you have access on the server side logs? do they show something?