For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Ozzy's avatar
Ozzy
Icon for Cirrus rankCirrus
Nov 05, 2024

F5 looses the token for the first call

Do you have any similar issue? or any idea : with the token that it has retrieved from the AD Entra ID endpoint. The first call to the backend always loses the token on the way via F5, so it does no...
application delivery
devops
David_Wanna's avatar
David_Wanna
Icon for Altostratus rankAltostratus
Mar 27, 2025

Hi Ozzy,  can you kindly share more details on how you fixed this issue with an irule?  We're running into a similar issue where we authenticate to the APM (VPN portal) using Entra ID.  Once inside the portal, upon clicking on the app resource/link (app uses Entra ID as well),  we're prompted to login to Entra ID again (this time fully proxied behind APM).  Any help you can offer is greatly appreciated!

  • Ozzy's avatar
    Ozzy
    Icon for Cirrus rankCirrus
    Mar 28, 2025

    Hi  David , yes  sure , we deploy this irule to our vs. It works fine. But first you should check authentication header

    when HTTP_REQUEST {

        set auth 0

        if { [HTTP::header exists "Authorization"]  } {
            set auth [HTTP::header value "Authorization"]
                }

    }

    when HTTP_REQUEST_RELEASE {

        if { !([HTTP::header exists "Authorization"]) && !($auth equals 0) } {

            HTTP::header insert Authorization $auth
          }

        unset auth

    }