F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Davo_T_20783's avatar
Davo_T_20783
Icon for Nimbostratus rankNimbostratus
Mar 30, 2014

APM SSO config using Kerberos to Weblogic backend not supplying session id cookie on post authentication requests

Hi,   We have constrained delegation and kerberos authentication working using APM 11.2.0, however once authenticated, subsequent request the JSESSIONID is not being supplied in the F5 request to ...
BIG-IP Access Policy Manager (APM)
design
security
Erin_D_177459's avatar
Erin_D_177459
Icon for Nimbostratus rankNimbostratus
Nov 16, 2014

Question about this configuration. When using the APM module of F5 to handle the Kerberos authentication what provider should be used within weblogic? If F5 will not be forwarding the request unless the user is Authorized then I would assume that maybe the only provider that needs to be registered in weblogic is the LDAP authentication provider to handle the authorization of the authenticated user. This is the process that would have taken place if we were using weblogic to handle the kerberos authentication.

 

Any idea if this is the correct assumption? Any suggestions would be helpful.