Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Clear all filters
Answers

SSO and iphone applications

Hi, We have newly iphone application that we would like to allow our users access to. However, the iphone application requires Active Directory authenticaton and we have a concerned about security. We are already using F5 for web access application but never used with iphone application. Is there a way we can avoid opening LDAP ports and leverage our F5 appliances. Not sure if the SSO will be able to support vendor's Iphone application and transmit AD credentials over to the application? Can you let me know if this is feasible?

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Hi,

We need to know if you are talking about Kerberos, NTLM auth ... on client side. You can use APM in order to make Basic, NTLM pre-auth (without opening any AD port or AD server to the public place) and use SSO to the back server (apps server).

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

That would be NTLM. However the application on the phone device is not a Web interface it is developped application that uses NTLM for authentication. Do you think this could still work.

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Of course. You can configure APM for NTLM front end authentication, APM will check auth with AD, and when front end authentication is validated, APM will make NTLM (v1 or V2) SSO to the back end.

In this scenario, APM must be part of the domain (there is a "Join Domain" feature into APM).

Certificat and SSK keys will be handled by APM as well.

0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Great day everyone!

Id like to share the perfect online app, ipa library. you may install the app at this this website for free and maybe this app will help for your iOs like .exe for windows and .ipa is for iphone’s.

0