For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

michael_trott_1's avatar
michael_trott_1
Icon for Nimbostratus rankNimbostratus
Aug 19, 2008

problems monitoring http with auth

Hi all,     am trying to monitor a http site that presents auth via a popup. i have confirmed the account i am using works, when i vist via browser all ok.     have completed a ...
management
monitoring
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Aug 26, 2008
What authentication type is the application using? If it's basic HTTP authentication, then using http://user:pass@app.example.com should work (or the corresponding -u flag for curl). If it's NTLM, then you'd need to use --ntlm for curl.

 

 

If you want to monitor an app that only supports NTLM, it gets more complicated. With a default HTTP monitor, you're able to send a single static request and wait to see if the pool member responds. If that response contains a configurable static string the pool member gets marked up. With NTLM authentication, I think you'd need to send multiple requests to negotiate the authentication header value required to access the application. This page (Click here) indicates there are three request/responses required.

 

 

If you really need to authenticate with a monitor to check the app, you might be able to write/find a client which can do this and then reference it with an external monitor.

 

 

Else, if you just want to check if the service is up and responding, you could send a standard HTTP request and look for 401 in the response (receive string).

 

 

Aaron