Forum Discussion
Florian_Meister
Nimbostratus
NimbostratussecurID authentication via APM & username/pin/tokencode
Hi,
when authenticating against an SecurID server there are 3 things needed:
username pin-code token-code
there is no documentation around which session variables have to be filled accordingly. there are only 2 session variables mentioned:
session.logon.last.username and session.logon.last.password
how do I have to fill this 3 pieces of information into those 2 variables ?
remember: I do not want to authenticate against 2 different systems like AD AND RSA and send username/password to AD, and username/tokencode to RSA. I want to use RSA SecurID and nothing else.
best regards,
Florian
Add it as a third field in the logon page agent in the VPE. Call it token-code and your variable will be session.logon.last.token-code . Here is a good thread about the same thing: https://devcentral.f5.com/questions/bigip-apm-ad-rsa-auth
Florian_Meisternope, sorry thats not the same thing. best regards, Florian
Michael_Koyfma1Cirrus
As far as I know, SecurID can be configured to consume either token code, or token+pin. If you use token+pin, you enter both in the same field, and RSA SecurID server automatically parses it properly and authenticates the request- Florian_Meisterthat's a good hint, but where is it described in detail ? How do I have to send it to the RSA server ? How do I have to fill the variables ?
