Using OAuth2 to share access for 2 DataCenters

Question

Hello.&nbsp;
I have two datacenters which serve the same app, masked by one APM device for authentication (using SSO to the backend) for each DC.&nbsp;
When one DataCenter is down, all users that were using this DC start using the backup DC, but they have to authenticate again. I was searching ideas to avoid this (re-auth).&nbsp;
One idea is to use OAuth2 with an external Authorization Server(shared by both DC). But checking deployment guides, I have seen all alternatives are using a logon page as initial step for initiation.&nbsp;
&nbsp;
I think the solution doesn't fix my initial requirement (avoid re-authentication when my users are moving from one DC to another).&nbsp;
Please, could you confirm if I could avoid the reauthentication step using OAuth2?&nbsp;
Any other ideas to get my requirement?&nbsp;
References:&nbsp;
https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-sso-13-1-0/37.html
https://clouddocs.f5.com/training/community/iam/html/class2/class2.html&nbsp;
KR,
Dario.&nbsp;

dariogb_339840 · Answer

I confirm that removing the logon page solves the problem with the reauthentication.&nbsp;
KR,
Dario.&nbsp;

Forum Discussion

Using OAuth2 to share access for 2 DataCenters

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

APM/OAuth2 : auto apply changes made by discovery

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

F5 RHI Solution an alternative to GSLB load balancing between Datacenters

Access Troubleshooting: BIG-IP APM OIDC integration

F5 BIG-IP APM with Omnissa Workspace ONE Access

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS