Forum Discussion

LarsS__178188's avatar
LarsS__178188
Icon for Nimbostratus rankNimbostratus
Mar 22, 2016

APM - Delete SSO credentials after login

Hello everybody,   I couldn't find any solution on my issue so far, so I try my luck here.   We use APM to access a SAP Portal. To realize SSO with the F5 and the SAP Portal login side, our One...
application delivery
BIG-IP Access Policy Manager (APM)
SSO
  • Josiah_39459's avatar
    Josiah_39459
    Mar 22, 2016

    Is the BW app a pool or a weblink or what? If SSO is being applied that means the request must be passing through the F5, so on whatever vip gets the request, check the HTTP_REQUEST event [HTTP::uri] and apply SSO::disable accordingly.

    e.g.

    when HTTP_REQUEST {
  if { [HTTP::uri] starts_with '/blahblahblah' } {
    WEBSSO::disable
  }
}

    or

       when ACCESS_ACL_ALLOWED {
      if { [HTTP::uri] starts_with '/blahblahblah' } {
        WEBSSO::disable
      }
    }

    similar depending on your app and f5 config

Josiah_39459's avatar
Josiah_39459
Historic F5 Account

Is the BW app a pool or a weblink or what? If SSO is being applied that means the request must be passing through the F5, so on whatever vip gets the request, check the HTTP_REQUEST event [HTTP::uri] and apply SSO::disable accordingly.

e.g.

when HTTP_REQUEST {
  if { [HTTP::uri] starts_with '/blahblahblah' } {
    WEBSSO::disable
  }
}

or

   when ACCESS_ACL_ALLOWED {
      if { [HTTP::uri] starts_with '/blahblahblah' } {
        WEBSSO::disable
      }
    }

similar depending on your app and f5 config

Walter_Kacynsk1's avatar
Walter_Kacynsk1
Icon for Nimbostratus rankNimbostratus
Mar 23, 2016
The proper command name is WEBSSO::disable -- https://clouddocs.f5.com/api/irules/WEBSSO__disable.html