Forum Discussion

Nimbostratus

May 27, 2015

ASP.NET Forms based Login

Hi all We are having an issue securing an web application secured using ASP.NET Forms based authentication. If we publish the internal site via a Virtual Server everything works fine, howev...

BIG-IP Access Policy Manager (APM)

microsoft

security

Michael_Jenkins

Cirrostratus

May 27, 2015

For login forms like those built in ASP.NET where you have some dynamic fields, you'll need to use a Forms - Client Initiated profile instead of the normal Forms profile. The client initiated profile will cause APM to inject some javascript into the page that will populate the fields and then submit the form.

As far as the form parameters you set up in the profile, you should only include the username and password ones. Don't add the eventvalidation or viewstate stuff, since they're generated from the ASP.NET serverside.

Hope this helps.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ASP.NET Forms based Login

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

F5 XC 503 upstream_reset_before_response_started{protocol_error}

CVE mitigation on F5 XC vs classic F5 WAF

F5 mssql health monitor failing

Could not communicate with the system. Try to reload page.

UCS Encryption Question

Related Content

Form Based SSO for Dynamically built HTTP forms

Subsequent Form Based SSO

Universal Persistence iRule based upon ASP.NET SessionId

Form Based Authentication with Tomcat not working on F5

Demystifying Time-based OTP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS