APM Full Step Up Authentication

Problem this snippet solves: By default, APM is not able to handle several authentication during a session. Once you are logged in, it’s finished, you can’t ask for authentication again. Since v1...

Updated Jun 06, 2023

Version 2.0

2-factor

authentication

BIG-IP Access Policy Manager (APM)

iRules

loa

programmability contest

security

step-up

Yann_Desmarest

Cirrus

Joined September 11, 2012

View Profile

Yann_Desmarest

Cirrus

Oct 18, 2016

Hi Niels,

Thank you for your comment. The behavior you get is basically independant from the BIG-IP version. In fact, when you specify a domain or host in the Multi-Domain SSO tab in your access policy, the BIG-IP generate MRHSession cookies including the domain you specified. In that case, you effectively need to change the line of code you highlight.

Thank you for your remark, I will add a note on that in the main post.

Best Regards

Yann

APM Full Step Up Authentication

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS