Trying to build F5 http authentication monitor

Question

Anyone have experience building a POST in the send string including username and password? Note: The authentication type is not basic.&nbsp;
SEND STRING:
POST /Home/Login HTTP/1.1
Host: f5.lab.domain.net
Content-Type: application/x-www-form-urlencoded

UserName=foo%40@bar.com&amp;Password=foobar&nbsp;
RECIEVE STRING:
302 found.&nbsp;
The above doesn't seem to work as expected however I can get a valid response using curl. The above command was built using the post data from the curl output. &nbsp;
Also is "Host:" required in the POST? If so that above can't be correct simply due to the fact that the Host would be subject to change depending on the pool member to which the POST is sent.&nbsp;
Thanks in advance.&nbsp;

mark_22062 · Answer

Looks like you maybe inserting @@ in the username, one url-encoded and one not.
Try this:
POST /Home/Login HTTP/1.1
Host: f5.lab.domain.net
Content-Type: application/x-www-form-urlencoded

UserName=foo%40bar.com&amp;Password=foobar

Failing that I would suggest you do a packet capture to see what is being sent/received.

johnmouser_2312 · Answer

You are correct. That was a typo on my part. Ill try a packet-capture to see if anything stands out.

Forum Discussion

Trying to build F5 http authentication monitor

2 Replies

Recent Discussions

Pricing when used with aws waf

F5 Rseries R2600 Tenant sizing

iRule help masking IBM host URL/URI

Need advise to setup a policy on F5

Advise on setting up IRULE

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Doing mTLS Authentication per URL

Distributed caching of authentication requests with NGINX Ingress Controller

Trying to Fill Some Giant Shoes...

Application Programming Interface (API) Authentication types simplified