wayney_128269
Oct 28, 2009Nimbostratus
security concern about BIGIP SSL connection
I have a concern about BIGIP connections.
Here is the scenario, if User A authenticates using NTLM to a web service behind a BIGIP VIP via SSL, can another user re-use an authenticated connection that already exists on the BIGIP to the same server? User A's client app passes a cookie to the server to maintain session persistence so that NTLM can occur properly.
User A > BIGIP > Connection A on BIGIP to Server XYZ
User B > BIGIP > Can User B use the same Connection A already on the BIGIP to connect to Server XYZ?
thanks