Forum Discussion
NimbostratusF5 and RSA integration for RBA
We have a login setup through F5 and recently added RBA (Risk Based Authentication) to challenge a subset of users that login to the F5. Running into an issue where in order to maintain the login page on the F5 that users that are in the RBA group have to re-enter username and password when hitting the RSA device, then if they need to enter challenge questions, then access the application. Obviously unacceptable user experience for users to enter username/password twice.
How can we pass the username/password to the RBA device so the user doesn't have to enter their username/password twice?
4 Replies
kunjanHas this to do with VMware view? There is a known issue, if so.
Dan_85248I don't think it has anything to do with VMware view. The issue at hand is we are adding RSA's risk based authentication which adds a web tier and authentication of its own, but is requiring the user to enter username/password on F5, then redirected to web-tier of RBA and enter username/password again.
- Stanislas_Piro2
Cumulonimbus
Hi,
why do you add both F5 and RSA authentication?
If the need is for SSO, does you application support Kerberos authentication?
- Dan_85248
Different security requirements for different users.
e.g.
User --> F5 -- Username/password --> enter token |--> enter RBA |--> no additional security beyond username/password
---> then enters into applicationIssue we are having is user gets username/password in at F5 and then required to re-enter username/password on the RBA (RSA Risk Based Authentication) Web Tier. We want the option to enter challenge questions via RBA, but not require multiple username/password entries.
