Password Encryption on BIGIP

Question

Hi, 
&nbsp;  
&nbsp; I would appreciate if anyone can help me in find out solution to my requirement. 
&nbsp;  
&nbsp; Requirement : 
&nbsp;  
&nbsp; This is for Authentication. 
&nbsp;  
&nbsp; 1. User will provide user name and password and valid CSI via up2date client. 
&nbsp; 2. up2date client POSTs XML-RPC data over HTTPS 
&nbsp; 3. BIG-IP rewrites incoming XML-RPC POST request,encrypting password 
&nbsp; 4. Database decrypts password 
&nbsp;  
&nbsp;  
&nbsp; Here my requirement is BIGIP should encrypt password and send it to DATABASE server. And DATABASE server will decrypt the password. 
&nbsp;  
&nbsp; Any solution to this? 
&nbsp;  
&nbsp; Regards

hoolio · Answer

Hello, 
&nbsp;  
&nbsp; You can encrypt arbitrary HTTP (or decrypted HTTPS) data using LTM.  You can do this using the AES::encrypt function (Click here).  You can replace a string in the request payload using a stream profile and STREAM::expression based iRule.  You can check the STREAM::expression wiki page for details (Click here).  Note that if you want to replace request content, you would want to enable the stream filter in the HTTP_REQUEST event. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

Password Encryption on BIGIP

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Load Balancing TCP TLS Encrypted Syslog Messages

Re: BigIP Report

Password Safety & Security: Passwords vs. Passphrases

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS