Forum Discussion

rodolfosalgado_'s avatar
rodolfosalgado_
Icon for Altostratus rankAltostratus
Jul 22, 2016

How BIG-IP Token/Authentication works ?

I'm unable to find anywhere here/documentation/articles anyone that could explain a little bit better the authentication token when you get the response from the Rest. I'm sending the POST to the R...
devops
iControlREST
security
ekaleido_26616's avatar
ekaleido_26616
Icon for Cirrocumulus rankCirrocumulus

The token will timeout after 1200 seconds. All attempts to increase or remove that have been futile for me.

 

Satoshi_Toyosaw's avatar
Satoshi_Toyosaw
Historic F5 Account
Mar 28, 2018

A different token is generated for every request as far as I checked. Tested on 12.1.2 and 13.0.0. The behaviour may be different in a different version. Please post the version number you tested if you can, so I can verify.

Here's a test one-liner:

for i in `seq 1 30`; do curl -sk -X POST -H "Content-type: application/json" \
 https:///mgmt/shared/authn/login \
 -d '{"username":";", "password":";", "loginProviderName":"tmos"}' | \
 python -m json.tool | fgrep '"token": "' | sort | uniq -c; done

To get a list of currently available tokens, run:

curl -sku admin: https:///mgmt/shared/authz/tokens