Authentication with HP Protect

Question

Good Afternoon,
       I was hoping someone might be able to help me with a problem I have.&nbsp;
I currently have a set up where my traffic will go from user to the F5, this then goes to the DC to get a kerberos ticket via APM. After this, the traffic is passed to the content server then back to the user. Since this design has been in use and proven, we have then had to introduce HP ProtectTools.&nbsp;
Since we have introduced this, I have the following problem;&nbsp;
When the user hits the F5 and is passed to the DC, the hashed passwords do not match as the HP ProtectTools provides a unique hash.&nbsp;
Is it possible for the F5 APM to somehow request the HP protect password hash? Or, does anyone have any other ideas how to tackle this issue? &nbsp;
Cheers&nbsp;
Adie&nbsp;

lucas_thompson_ · Answer

Is this a problem in the frontend authentication or the kerb SSO? It's not very clear from your question. If you're not sure, review the /var/log/apm logs and see where the trouble is.&nbsp;

kevin_stewart · Answer

Can you elaborate? Kerberos doesn't generally use passwords.&nbsp;

Forum Discussion

Authentication with HP Protect

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

ForgeRock with F5 Distributed Cloud (XC) Account Protection and Authentication Intelligence

L7 DoS Protection with NGINX App Protect DoS

Beyond REST: Protecting GraphQL

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Managing NGINX App Protect WAF for Beginners

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS