Forum Discussion

MVP

May 08, 2013

HTTP 401 Reponse functionality?

I had hoped to use the HTTP 401 Reponse to force the APM to send a HTTP 401 reponse and then recieve the reponse and continue when the credentials are provided. but when i check i still get a 302 red...

BIG-IP Access Policy Manager (APM)

remote access

security

Kevin_Stewart

Employee

May 08, 2013

The 302 to /my.policy will always happen first. That signals the beginning of the access policy evaluation. Once you've received the redirect (and session token), the browser will return to /my.policy, enter the evaluation, get the 401 response (if it's configured first), proceed through the rest of the evaluation, and then receive a second 302 redirect back to the original URI.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)