Forum Discussion

Nimbostratus

Jul 08, 2022

irule to replace Realm value for http response header WWW-Authenticate: Basic realm="IP address"

To mitigate against internal IP address disclosure in Basic Authentication Header, i'd like to change the IP address to some other value. I tried changing "Basic Auth Realm" in http profile but it o...

MVP

Jul 10, 2022

Hi alchancco,

Can you change the http event and try?

when HTTP_RESPONSE_RELEASE {
	if { [HTTP::header WWW-Authenticate] starts_with "Basic" }{
		HTTP::header replace WWW-Authenticate "Basic realm='mydomain.com'"
	}
}

alchancco

Nimbostratus

Jul 21, 2022

HI Enes_Afsin_AI,

I made the change but as before it only changes the header value sporadically.

- alfredo

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

irule to replace Realm value for http response header WWW-Authenticate: Basic realm="IP address"

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Help with SSH Virtual Server

ASM allow specific url from outside country of geolocation ON

Bot Defense causing a lot of false positives

F5 DNS Logs in JSON Format

Related Content

"Content Switching" to non-addressable virtual server

"Port lockdown" option for SNAT pool addresses?

Check Authorization / WWW-Authenticate headers

Rewrite header "WWW-Authenticate: Basic realm="

APM SSO and SAP error no supported WWW-Authenticate header is found

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS