How to confirm APM is sending LOGON_USER and DOMAIN to the application portal

Question

I am getting 401 when hitting an application that is behind APM. How do I confirm that APM is sending Login User to the application after authentication happened ?&nbsp;
Thank-you.
Edouard.&nbsp;

hamish · Answer

If you really want to know, then use tcpdump (Or ssldump if it's an encrypted connection) to actually look at the stream of data between the BigIP and the pool member.&nbsp;
If you use ssldump, you'll need access to the key on the pool member to decrypt the traffic. If you an't get that, you can always drop a proxy in between (Or even another bigIP) and do cleartext between your big and the proxy and then encrypt from the proxy to the pool member.&nbsp;
Other options are getting the app to log headers (if possible). And have it log LOGIN_USER. (I suspect you think this isn't coming through so you may have tried this already). &nbsp;

Forum Discussion

How to confirm APM is sending LOGON_USER and DOMAIN to the application portal

1 Reply

Recent Discussions

What happens if I only enable ASM in BIG-IP Under System > Resource Provisioning

URL

Migration from i series 10200 with 1 child VCMP to r series 10900 series

Azure DP-100 Exam Questions

Deploying F5 WAF in front of Azure Web App Services

Related Content

Application Programming Interface (API) Authentication types simplified

Enhance your Application Security using Client-side signals

F5 BIG-IP per application Red Hat OpenShift cluster migrations

F5 BIG-IP deployment with OpenShift - publishing application options

Securing and Scaling Hybrid Application with F5 NGINX (Part 1)