SMS challenge with F5 LTM

Hi,

 

 

I have been able to configure the LTM to authenticate users via radius before accessing the hosted web applications.

 

 

Our radius implementation integrates with a backend SecureID database to provide OTP and so far it has been working perfectly

 

 

We are currently looking at introducing an SMS token option, THe scenario goes like this

 

 

1. a user comes to the address of the web application

 

2. The F5 intercepts the request and offers the client a pop up challenge window (basic authentication I believe)

 

3. The user inputs the username and a pin code

 

4. the radius (upon verifying the previous info) sends an additional challenge (for the sms token)

 

5. The user receives an sms and inputs it to another window on the F5

 

6. The radius verifies the additional challenge and grants the user access.

 

 

My questions are:

 

 

1. is such setup possible

 

2. is it supported out of the box or some iRule development needs to be done

 

3. are we able to use form based authentication (i.e present a separate webpage to the user with customized messages) and if so can it be hosted on the F5 box itself or does it have to be hosted separately

 

 

 

Appreciate your valuable input

 

 

Hassan