Forum Discussion

Alex_1935's avatar
Alex_1935
Icon for Nimbostratus rankNimbostratus
Jan 30, 2013

APM policy with external logon page and password expiration procedure

 

Hi,

 

I am trying to implement an APM policy with SSO as well and I have a problem with user accounts that are expired.

 

For designing issues we want to have a custom logon page so we performed our logon procedure on an external webpage that is being hosted on an external web server as well. This page posts user credentials back to F5 and the user logons. Our user authentication is performed using Active Directory. We can’t implement “user change password procedure” as it happens with my.policy logon page, because we can’t find a way to post back to our custom logon page.

 

I would appreciate if someone has achieved that somehow or if you can provide me any hint of how can we implement this.

 

Thank you in advance for your help.

 

Best Regards,

 

Alexander Emmanuel

 

BIG-IP Access Policy Manager (APM)
remote access
security

2 Replies

  • Michael_Koyfma1's avatar
    Michael_Koyfma1
    Icon for Cirrus rankCirrus
    Jan 30, 2013
    Alex,

     

     

    Why are you doing external logon page? Purely for customization reasons? If so, is there any reason why those customizations cannot be done within APM policy itself?

     

  • Alex_1935's avatar
    Alex_1935
    Icon for Nimbostratus rankNimbostratus
    Jan 30, 2013
    Thank you Micheal for your response.

     

     

    We need to have an external logon page because for marketing reasons there is a need for changing css files and images very often. Web site administrators are not able to do customization on APM policy.

     

    The solution we are implementing is an SSO solution for 2 public websites, where customers once they authenticating to one website are able to visit the second one without entering again their credentials.