Forum Discussion

jk_44172's avatar
jk_44172
Icon for Nimbostratus rankNimbostratus
Jun 06, 2012

Post Credentials to web site.

Hi All     I have a question to see if anyone knows to best way to post generic credentials to a website when it give a 401 error and prompts for Creds? The scenario is that we have a web site ...
application delivery
dev
devops
iRules
gbbaus_104974's avatar
gbbaus_104974
Historic F5 Account
Jun 09, 2012
Hi JK

 

 

You could do a "Variable Assign" in the APM policy and set the "sesion.logon.last.username" and the "session.logon.last.password" to equal a generic username and apssword.

 

Of course doing this in the main baranch of the policy would mean all users will now logon to the website with the generic credentials that you have forced on them.

 

 

To avoid that you would need to build some logic into the policy to only do the manual username/password assignemnt for a particular set of users. Maybe based off the subnet they are connecting from (or some other way to refine who gets the generic assignment of username/password)

 

 

Have a search on devcentral for session.logon.last.username - there are a few example of people doing manipulation and substitution of these variable to suit their needs.

 

 

There is also a solution that talks to doing a POST from credentials captured on a different web pag logon (not sure if this is relevant to your setup) https://devcentral.f5.com/wiki/APM.AcceptPostedCredsfromExternalSite.ashx

 

 

 

HTH