Forum Discussion

Nimbostratus

Mar 31, 2019

Disable HTTP 302 Found redirect for B2B use case

Newbie! Our use case is a B2B REST API and generally no user access via a browser except for testing. We are using TLS 1.2 Mutual Authentication (MA). An HTTP 302 Found including a set of cookie...

application delivery

BIG-IP

BIG-IP Access Policy Manager (APM)

security

Kai_Wilke

MVP

Apr 03, 2019

Hi Tony,

APM supports a clientless-mode to allow transparent authentication (without triggering the HTTP redirect to /my.policy). You may check out APM Operations Guide and search for "Clientless mode" to get an overview of this feature...

BIG-IP APM Operations Guide

https://support.f5.com/content/kb/en-us/products/big-ip_apm/manuals/product/f5-apm-operations-guide/_jcr_content/pdfAttach/download/file.res/f5-apm-operations-guide.pdf

Keep in mind that APMs clientless-mode still depends on a APM session cookie, to authenticate subsequent requests after authentication. In client-less mode the cookie will be issued on the very first application server response.

If your user-agent does not support cookies, you have to develop an

[ACCESS::user]

based iRule in front of APM, that uses certain certificate information as the

session.user.uuid

value to locate existing APM sessions for the currently connected user and to finally inject the APM session cookie to the ongoing request.

Wiki: ACCESS::user

https://devcentral.f5.com/wiki/iRules.ACCESS__user.ashx

Cheers, Kai

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Disable HTTP 302 Found redirect for B2B use case

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Horizon View iApp - Big-IP 17.5

r4600 Tenant CPU Assignment

master key file on vcmp guest HA Cluster different?

F5 Health Monitor Receive String as JSON

Rewrite content in XML schema file.

Related Content

Disabling Weak Ciphers

Disable below cipher

Disabling Specific Weak Cipher Suites

iRules: Disabling Event Processing

File Not Found Handler

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS