For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

thagmann_128177's avatar
thagmann_128177
Icon for Nimbostratus rankNimbostratus
Nov 24, 2004

BIGIP 9.0 - Root vs. Other Accounts

Based on iControl testing we are doing, when we try to auth an IControl request to the BIGIP using the root account/correct pass we keep getting "401: Authorization Required" errors. When I do the sa...
dev
devops
iControl
Loc_Pham_101863's avatar
Loc_Pham_101863
Historic F5 Account
Mar 11, 2005
Hi Tom,

 

 

The default behavior is to deny everyone unless they're authenticated, except for local connections. So you don't have to explicitly add any IP address to allow someone to access, since if they're not explicitly specified, they will just be authenticated, and if authenticated successfully, they'll be allowed access. There's a little difference in how the configuration sections for iControl and TMUI might look, but that's just a special case for local connections.

 

 

With that being said, you don't even have to add him to the /tmui section since by default that directory will allow access to everyone who's authenticated.

 

 

So in short, the user you mentioned was not smoking crack. :-)

 

Loc