For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

njseq's avatar
njseq
Icon for Altostratus rankAltostratus
Jul 19, 2019

APM SSO and SAP error no supported WWW-Authenticate header is found

Hello, We are using APM to publish SAP Portal Access resource and other Web apps in F5 BIG-IP VE. We configured SSO NTLMV1 for the VS Access Profile SAP application is not authenticating. It's giv...
application delivery
BIG-IP
BIG-IP Access Policy Manager (APM)
devops
njseq's avatar
njseq
Icon for Altostratus rankAltostratus
Jul 22, 2019

Hi Niels,

Thanks for helping.

I've used this iRule:

 

when HTTP_REQUEST {

  if { [HTTP::host] contains "/irj/portal/" } {

    WEBSSO::select sso-basic

  }

}

 

The sso-basic is my SSO Profile for HTTP Basic that works for SAP.

 

I get the same responses, with or without the iRule:

 

CLIENT

No Proxy-Authorization Header is present.

No Authorization Header is present.

 

SERVER

No Proxy-Authenticate Header is present.

www-authenticate Header is present: Negotiate

www-authenticate Header is present: Negotiate

 

What can be wrong?

Thanks.

NS