Forum Discussion
TMG Migration - Deny Authentication
- Aug 07, 2014
Sounds like you could create an iRule to drop or otherwise respond to requests for the Authentication URL and add it to the virtual server using the iApp. Maybe something like this:
when RULE_INIT { set static::response "Access DeniedWe are sorry, but you may not authenticate to the SharePoint server." } when HTTP_REQUEST { if { [string tolower [HTTP::uri]] contains "/authenticate.aspx" } { HTTP::respond 200 content $static::response } } when HTTP_RESPONSE { if { [HTTP::header exists "WWW-Authenticate"] } { HTTP::respond 200 content $static::response } }
Mike, thank you for the reply. In this case, we're publishing a SharePoint server as an anonymously accessible website that does not require authentication to access the content. Authentication should be blocked by the proxy if attempted - that way internal users can authenticate to the site (for content updates, etc, not through BIG-IP), but outside users cannot.
Does that help clarify the use case?
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com