Using OAuth2 to share access for 2 DataCenters

Question

Hello.&nbsp;
I have two datacenters which serve the same app, masked by one APM device for authentication (using SSO to the backend) for each DC.&nbsp;
When one DataCenter is down, all users that were using this DC start using the backup DC, but they have to authenticate again. I was searching ideas to avoid this (re-auth).&nbsp;
One idea is to use OAuth2 with an external Authorization Server(shared by both DC). But checking deployment guides, I have seen all alternatives are using a logon page as initial step for initiation.&nbsp;
&nbsp;
I think the solution doesn't fix my initial requirement (avoid re-authentication when my users are moving from one DC to another).&nbsp;
Please, could you confirm if I could avoid the reauthentication step using OAuth2?&nbsp;
Any other ideas to get my requirement?&nbsp;
References:&nbsp;
https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-sso-13-1-0/37.html
https://clouddocs.f5.com/training/community/iam/html/class2/class2.html&nbsp;
KR,
Dario.&nbsp;

dariogb_339840 · Answer

I confirm that removing the logon page solves the problem with the reauthentication.&nbsp;
KR,
Dario.&nbsp;

Forum Discussion

Using OAuth2 to share access for 2 DataCenters

1 Reply

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

Overview of API Access Control and implementing API key access control with BIG-IP APM

Allowing JNLP access to an application protected by APM/Oauth2

Persistence mirroring across datacenters?

SSL Orchestrator Advanced Use Cases: Defying the Datacenter Deployment Monster