For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Scott_85950's avatar
Scott_85950
Icon for Nimbostratus rankNimbostratus
Jun 17, 2008

Firepass %username% promoted to Portal App URI

We have a web app published through Portal Access. In it, the URI string references the %username%, whereby the web app matches it to AD and provides single sign on for the end user. IE offers this by default and actually replaces the username for the wildcard prefix.

 

 

My question; what is the username variable retained by the Firepass? I'd like to carry forward the Firepass logon username when then user is accessing the URL. I am assuming that we may be able to promote it through a SED script or directly reference it in the URI.

 

 

SED Script?

 

s@%username%@FP_username@g

 

 

Here is the application example;

 

http://10.222.19.243/cgi-bin/getstaffid.pl?username=%USERNAME%

 

 

Thanks in advance,

 

Scott
BIG-IP Access Policy Manager (APM)
remote access
security

1 Reply

  • Scott_85950's avatar
    Scott_85950
    Icon for Nimbostratus rankNimbostratus
    Jun 18, 2008
    Answer Found;

     

     

    the %username% is actually populated from the Firepass logon credentials, sweet. It appears the actual issue is with the enabled Caching and Compression we use for preformance as it appears Firefox users are able to access the application the first time without issue but Firepass code is "spit out" the second time because it is attempting to pull from Cache. With Caching and Compression disabled, the original problem went away.

     

     

    Problem Solved!