Window Credientials

Question

The application folks created a web site that users log into using Windows credentials.

&nbsp;

The site drops a cookie on the user’s PC and the next time the user does not need to log in to access the site.

&nbsp;

They tell me that now that the site sits behind a BigIP, users are prompted to login each and every time.

&nbsp;

Did I miss an option when I set up the virtual?
&nbsp;I tried playing with cookie persistance but that didn't help.
&nbsp;Thanks

&nbsp;

hooleylist · Answer

Hi Ten, 
&nbsp;  
&nbsp; What kind of authentication are you testing with (basic, NTLM, etc)?  Can you post your anonymized virtual server config using 'b virtual VS_NAME list'? 
&nbsp;  
&nbsp; Aaron

nitass · Answer

have u seen cookie on client? tool such as httpfox could be useful. 
&nbsp;  
&nbsp; httpfox 
&nbsp; https://addons.mozilla.org/en-us/firefox/addon/httpfox/ 
&nbsp;  
&nbsp; additionally, i believe u need persistence since user has to connect to the same server. u may try simple persistence profile e.g. source address. 
&nbsp;  
&nbsp; cheer!

Forum Discussion

Window Credientials

2 Replies

Recent Discussions

TELEGRAMA @CANNAUNION DINERO FALSO 💸✔💸

Handling IP Geolocation Conflicts with AWAF for Internal LAN Addresses

F5 AWAF with HTTP/2, MRF and Websocket profiles

What parameter sections can be checked to find out the cause of slow GUI access?

Issue with worker_connections limits in Nginx+

Related Content

Windows Critical RCE Vulnerability, Malicious Solana-py, and EDRKillShifter

F5 BIG-IP Access Policy Manager (APM) Machine Tunnels for Windows

Nginx vs Windows

Windows File Share via F5 VIP

Windows edge client - Trusted Sites