Can Big IP APM do 2 phase Radius Authentication

Question

I want a login page and a challenge page(prompts for OTP)&nbsp;
Access policy will be something like that&nbsp;
Start-&gt; Logon Page -&gt; Radius Auth--Access-Challenge-&gt; Challenge Page--&gt;Radius Auth-- Access-Accept--&gt; Resource Assignment&nbsp;
But I do not see the Challenge or OTP page anywhere. I am using a custom Radius Server.&nbsp;
Tested with Juniper SA 4500 it was OK. I would like to integrate this solution with F5 Big IP as customer is using this.&nbsp;

thomas_gobet · Answer

Hi,&nbsp;
You haven't got any Challenge or OTP page you're right.&nbsp;
You have 2 options : &nbsp;
Modify your login page to include a field which contains your OTPLet your APM do the work, if the radius server returns Access-Challenge it will ask the OTP to the client.

Forum Discussion

Can Big IP APM do 2 phase Radius Authentication

1 Reply

Recent Discussions

Port Group on F5OS network setting

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Related Content

RADIUS server authenticating user with Google Authenticator

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

iRule based RADIUS Client Stack

RADIUS server using APM to authenticate users

RADIUS authentication using iRulesLX