APM Forms SSO V2 disable password save prompt

Question

When using APM Forms SSO V2 (Client-Side JavaScript) I observe the the browser prompts to save the users password.  However the password being submitted is the f5-sso-token marker that APM uses to perform password substitution as the request flows to the backend.  This is obviously not the correct password that the browser should cache.  Is there a way to indicate that this password should not be saved?

sgbjrn · Answer

Did you find a solution to this issue?&nbsp;We ran into the same issue.

walter_kacynski · Answer

Nope, this is still an issue.

sgbjrn · Answer

I created an Empty function after the login page, added a new branch with the filter "expr {[mcget -secure {session.logon.last.password}] == "f5-sso-token"}" and forwarded to a Message Box explaining the error, and how to update or delete the entry in the browsers, then forwarding to a Deny_Redirect back to the login page.

Dirty workaround, but prevents accounts being locked out and a few support calls.

sgbjrn · Answer

As a side note, I didn't manage to reproduce the issue in Firefox. So it seems like a bug with chromium browsers. (Edge/Chrome tested)

Forum Discussion

APM Forms SSO V2 disable password save prompt

Recent Discussions

How do I create a traffic log for two different route domains?

Http / https health monitor issue

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Need Urgent BIGIP Trial License and VM Image

APM for banner and cert

Related Content

AI Security : Prompt Injection and Insecure Output Handling.

Password Safety & Security: Passwords vs. Passphrases

Automate scp transfers using password

Pwned Passwords Check

Ansible module to update BIG-IP root/admin passwords

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS