For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Ernesto_Mayol_2's avatar
Ernesto_Mayol_2
Icon for Nimbostratus rankNimbostratus
Feb 19, 2016

Store encrypted values to be used in access policy

Here is my problem, I need to store a sensitive value (a shared secret) which I can retrieve while processing access policy to be able to compare it with the value provided by the other system that p...
BIG-IP Access Policy Manager (APM)
security
Daniel_Tavernie's avatar
Daniel_Tavernie
Icon for Cirrostratus rankCirrostratus
Oct 05, 2018

For anyone looking for a possible solution, if you are just trying to make it very difficult for someone to find the keys (e.g. you can't copy/paste them in the GUI) I would recommend looking at iFiles.

  1. Create a plain text file with the key
  2. Import the text file as an iFile (System > File Management > iFiles). The contents of this imported file cannot be viewed from the GUI. You cannot even view the contents from TMSH. You must navigate to 
    /config/filestore/files_d/Common_d/ifile_d/
  3. Create an iRule iFile reference to the iFile (Local Traffic > iRules > iFiles)
  4. Create an iRule that reads the iFile to get the key using something like 
    [ifile get "/Common/my_ifile"]