Forum Discussion

SV2022

Cirrus

Feb 18, 2024

SSO

I am.beginner with APM I could see same access profile is mapped to 2 different VS. 1.my understanding is they have mapped same access profile to make sso work between virtual servers..is that righ...

BIG-IP Access Policy Manager (APM)

KeesvandenBos
Feb 19, 2024
Read this article for more clarification: https://my.f5.com/manage/s/article/K15387

Search for "Session cookie design"

SV2022

Cirrus

Feb 19, 2024

"Since the user has this cookie and an active session the second virtual server doesn't need valid credentials."

Does that mean the cookie generated with first VS will be sent again to second VS and there wont be any validation. In that case anyone can insert a cookie to second VS right and get access to the servers right ?

KeesvandenBos
MVP
Feb 19, 2024
Read this article for more clarification: https://my.f5.com/manage/s/article/K15387

Search for "Session cookie design"

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSO

Recent Discussions

Client SSL Profile set to Require Client Certificate breaks RDP in APM

TS Declarations for DNS

APM file and registry key date check 8 days old

SSL bridging without SSL proxy forward

Should config via cli rather than gui?

Related Content

Enhanced Modern Applications and MicroServices SSO with NGINX

Secure Modern Applications and MicroServices SSO with NGINX

WebEX SSO integration

APM Cookbook: Single Sign On (SSO) using Kerberos

Zero Trust building blocks - Leverage F5 NGINX Plus Single Sign-On (SSO) and F5 XC

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS