For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Sharon_Lucas_55's avatar
Sharon_Lucas_55
Icon for Nimbostratus rankNimbostratus
Apr 28, 2010

Problem authenticating if password contains a @

I'm using the iControl SDK to create a Java application that automates configuring BIG-IP.     If my admin password for BIG-IP does not contain a @, authentication to the BIG-IP host via my Jav...
dev
devops
iControl
Luke_Lehman's avatar
Luke_Lehman
Icon for Employee rankEmployee
Feb 07, 2012

Joe / All,

 

 

 

I think this is more of a change in the way the GUI authenticates. I understand that it has been updated from Basic Auth to Forms Auth, but where I'm getting tripped up is how exactly to POST the proper data to authenticate successfully.

 

 

 

I've referenced this - but still can't quite get it to work : http://devcentral.f5.com/wiki/iRules.ClientAuthUsingHTMLForms.ashx

 

 

 

From what I understand this is the flow of the login (w/ Forms)

 

 

 

1a. Page request for protected resource

 

1b. Server (LTM) responds with a 302 of the login page (/tmui/login.jsp)

 

2a. User POSTs data from the Auth Form to the server

 

2b. Server (LTM) responds with a 302 with the original page location and a set-cookie

 

3. Client requests original URL with cookie in header

 

 

 

Am I going down the right path?