Forum Discussion

Nimbostratus

Feb 04, 2005

custom RADIUS authentication

I am new to the TCL and BIG-IP worlds, and am having difficulty figuring this problem out using the Config Guide for LTM. How would I go about writing an iRule to authenticate a client via RADIUS, th...

Historic F5 Account

Feb 04, 2005

If you do mean to rewrite the HTTP authentication header, you can write a new radius auth rule with AUTH_SUCCESS event handler like this:

 
 when AUTH_SUCCESS { 
    if {$tmm_auth_radius_sid eq [AUTH::last_event_session_id]} { 
       set newauth [b64encode [format "%s:%s" [HTTP::username] "xxxx"]] 
       HTTP::header remove Authorization 
       HTTP::header insert Authorization "Basic $newauth" 
       HTTP::release 
    } 
 }

Here, xxxx means the static password. You may replace [HTTP::username] with a static name too.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

custom RADIUS authentication

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

RADIUS server authenticating user with Google Authenticator

RADIUS server using APM to authenticate users

RADIUS authentication using iRulesLX

RADIUS authentication packet manipulation library

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS