Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

F5 edge client with OIDC and yubikey

awan_m
Altocumulus
Altocumulus

‎01-Mar-2023 02:41

Hi All 

i am implementing oAuth with OIDC - it is woking fine when logging on through the browser but failing when trying edgeclinet - i have configured oAuth setting on the connectivity profile but it is stil failing .

my oAuth provider is Forgerock .

any suggestions?

Thanks 

Labels:
0 Kudos
7 REPLIES 7

Leslie_Hubertus
Community Manager
Community Manager

‎02-Mar-2023 11:34 - edited ‎02-Mar-2023 11:35

Hey @awan_m - FYI I've asked a teammate to come help answer your question if nobody else drops some knowledge here soon. 

0 Kudos

awan_m
Altocumulus
Altocumulus

‎07-Mar-2023 02:26

Thanks - in my case - i have setup 0Auth with - openID - and it works fine in the browser , meaning yubi key works fine when authenticating through browser - but it fails when i try with Edge clinet - can someone help in that regard

thanks  

0 Kudos

Matt_Dierick
F5 Employee
F5 Employee

‎10-Mar-2023 00:37

Hi buddy, you have to configure the Edge Client as an OIDC client. I built and posted a video explaining the steps in my Youtube channel : https://youtu.be/-LCilU-UrYU

Hope this help

Matt

0 Kudos

awan_m
Altocumulus
Altocumulus
In response to Matt_Dierick

‎10-Mar-2023 00:51

thanks for this - my authentication provider is forgerock and oAuth with openid is working -

the problem is the Edge client - as you showed in your video it should open the browser and authenticate and VPN should establish - and that happens - but it also opens its embidded browser where yubikey fails.

Question how do i configure it in a way where iy does not open the embidded browser?embeddedembedded

0 Kudos

Matt_Dierick
F5 Employee
F5 Employee
In response to awan_m

‎13-Mar-2023 07:28

If the embedded browser opens, it means OIDC edge client config is wrong. It should open a real browser window.

Check your edge client config.

0 Kudos

awan_m
Altocumulus
Altocumulus
In response to Matt_Dierick

‎13-Mar-2023 14:06

Hi - couple of questions 

1 - under - 

i have configured it as a client - with client ID and secret 
2 - and in visual policy editot - i have used oAuth client - instead of oAuth Scope
and all of this works fine when i use the browser - but the edge client has issues 
 
what do i need to do 
do i need to configure 0Auth server entity as resource - 
and then use 0Auth Scope in visual policy editor?
and my OAuth server is Forgerock
Thanks 
0 Kudos

awan_m
Altocumulus
Altocumulus
In response to awan_m

‎14-Mar-2023 20:19

Hi i watched the video multiple times and tries to set it up as recommended in the video.

couple of questions

what should i put in the following in oAuth setting - for edge client

Complete Redirection URI: -- 

secondly - if i leave that blank - the edge client keeps going to login page - and login process

 
0 Kudos
Copyright © 2023 Khoros, LLC