Forum Discussion

arcee123_5965's avatar
arcee123_5965
Icon for Nimbostratus rankNimbostratus
Nov 30, 2012

Authentication conversion

 

Greetings, I have an application that talks to Microsoft Sharepoint via F5.

 

F5 is new to us.

 

 

The application only understands basic authentication.

 

I am not allowed to use basic authentication on sharepoint.

 

 

Our previous security appliance had a rule that accepts basic authentication from only the internal server where the application resides, and then translates that authentication on behalf of my application to the necessary NTLM/Windows authentication style that sharepoint understands. Then Sharepoint authenticates and sends the response that we need.

 

 

Since we started, we can see the packats sent back and forth, but we require F5 to convert the authentication style so Sharepoint can see us.

 

 

Help?

 

Thanks much

 

application delivery
dev
devops
iRules

4 Replies

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    Nov 30, 2012
    The BIG-IP Access Policy Manager module has the ability to do server side NTLM (v1 and v2), plus Kerberos (an even better and more secure authentication protocol for SharePoint).
  • arcee123_5965's avatar
    arcee123_5965
    Icon for Nimbostratus rankNimbostratus
    Nov 30, 2012
    sweet...

     

    do you happen to have more info on how to research this?

     

    Thanks

     

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    Nov 30, 2012
    Sure thing. There's an SSO configuration guide for APM on the support site:

     

     

    http://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-sso-config-11-2-0.html