Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

May 06, 2016

Client authentication methods versus Single Sign On methods

Currently, we mostly have the following structure for our APM profiles: Present a logon page Verify entered username/password using any of these methods: LDAP, AD, Radius,... Map username and...

BIG-IP Access Policy Manager (APM)

Yann_Desmarest_

Icon for Nacreous rank

Nacreous

May 06, 2016

Hello,

You are right, when choosing Kerberos, client certificate or ntlm authentication, you retrict your capabilities on the authentication mecanism supported on the backend for SSO.

When using authentication mecanism not prompting for password, you can only use kerberos delegation, saml or header based SSO.

Icon for Nimbostratus rank

Nimbostratus

May 06, 2016

In this case, server side SSO is ntlmv2. If I understand well, does this mean that I am limited to also using ntlm on the client side?

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5