Skip to main content

F5001 - F5 BIG-IP Authentication Failed

Agent error code #F5001 indicates that the F5 BIG-IP rejected the username and password supplied by the Knocknoc agent. The device returned HTTP 401 Unauthorized when the agent tried to obtain an authentication token.

This is distinct from authorization failures (#F5002), where the credentials are valid but the user's role lacks the permissions needed to read or write the data-group.

Common causes include:

  • A typo or trailing whitespace in the username or password in the Knocknoc backend
  • The password was rotated on the BIG-IP and the Knocknoc backend was not updated
  • The service account is locked, disabled, or expired
  • The account exists in a remote auth source (RADIUS / TACACS+ / Active Directory) rather than the local (tmos) store. Knocknoc authenticates against the local store

Steps to Resolve

Re-enter the Credentials in Knocknoc

  1. In the Knocknoc admin interface, open the backend configuration for the affected F5 Knoc
  2. Re-enter the Username and Password
  3. Save and wait for the next grant operation

Confirm the Local Account on the BIG-IP

  1. In the BIG-IP Configuration utility, go to System > Users > User List
  2. Confirm the service account exists, is not disabled, and uses local authentication
  3. If unsure, reset the password and update it in Knocknoc

Still Having Issues?

We can help you out, contact us at [email protected].