For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Matt_Phelps_142's avatar
Matt_Phelps_142
Icon for Altocumulus rankAltocumulus
Oct 20, 2017
Solved

Getting a 401 only on select REST calls (token auth)

I am probably doing something stupid, but I keep getting 401s when making REST calls to our v13 BIG-IP devices. What is weird is that the same exact token works fine when sending GETs, but POSTs/PUTs...
BIG-IP
devops
iControlREST
  • Matt_Phelps_142's avatar
    Matt_Phelps_142
    Apr 20, 2018

    Figured this out a little while ago and it has to do with the loginProviderName in the JSON object sent. When setting

     

    "loginProviderName": "tmos"

     

    against a BIG-IQ, this will fail hard, so I had removed this property from the login request object in a shared function I was using. Eliminating this property will allow token generation from a BIG-IP with read privileges, but will not allow writing.

     

Matt_Phelps_142's avatar
Matt_Phelps_142
Icon for Altocumulus rankAltocumulus
Apr 20, 2018

Figured this out a little while ago and it has to do with the loginProviderName in the JSON object sent. When setting

 

"loginProviderName": "tmos"

 

against a BIG-IQ, this will fail hard, so I had removed this property from the login request object in a shared function I was using. Eliminating this property will allow token generation from a BIG-IP with read privileges, but will not allow writing.