HTTP portal with the NTLM auth flow is broken on XC.
We are trying to protect an OWA365 portal with XC, but some requests with NTLM authentication show an Error 503 - Service Unavailable message in XC. I think that is the NTLM auth process because when try the same HTTP GET with "Authorization: Basic" it works fine. curl -v https://autodiscover.example.com/autodiscover/autodiscover.xml -H "Authorization: Basic ZG9tYWluXHVzZXI6UHJ1ZWJhc2RlcGFzc3dvcmQ=" < HTTP/2 200 < cache-control: private < content-type: text/xml; charset=utf-8 < request-id: 00000000-0000-0000-0000-000000000000 < server: volt-adc < <?xml version="1.0" encoding="utf-8"?> <Autodiscover xmlns="http://schemas.microsoft.com/exchange/autodiscover/responseschema/2006"> <Response> <Error Time="20:00:00.0000000" Id="000000000"> But the browser always fails. First, it responds with a 401 HTTP code. After sending the credentials, XC shows a 503-03 error: 'Service unavailable'. method: GET host: autodiscover.example.com req_path: /autodiscover/autodiscover.xml req_body: — api_endpoint: UNKNOWN scheme: https rsp_code: 503 rsp_code_details: upstream_reset_before_response_started{remote_reset} Do F5-XC have an OWA template or something about the NTLM user portal?F5 Roles required for Catalog Items
Having difficulty mapping required roles for a group to have proper access to catalog items. If I create a group call Security-Team and I want them to manage the security like WAF (Web App * API Protection) and Bot Defense, Web App Scanning and whatever else the Security Team should be monitoring to keep our environment safe. What Roles are required for management? They don't need access to everything, just what is required for the application security. Then we have a group called Support-Teams that need ReadOnly access to everything so they can log into F5 XC and just view everything with no ability to make changes. Not sure what Roles would get assigned to this group. Both scenarios let's assume all namespaces. Any help or direction is most appreciated.
