APM basic authentication workflow possible without a redirect to /my.policy?

Question

Hi - we have a number of SL offload VIPs accessed by thick client applications, for which we would like to add authentication. Ideally, we would like to do this via an access policy on the F5, for maintainability and security.&nbsp;
But in our early attempts, we haven't been able to do so without triggering the 301 redirect to /my.policy under the covers. Certain of our thick client apps don't automatically handle that HTTP 301 ... hence, in certain cases, we would like to have the authentication workflow do a straight HTTP 401 response, sans redirection.&nbsp;
Is such a workflow possible with APM? Currently using a local db for authentication, but not married to that, if needed.&nbsp;
We're on 11.5.1, running on 2000s devices.&nbsp;

michael_koyfma1 · Answer

Sure, it is possible.  You should search for "apm clientless mode" - should get some hits there.  One of them to start with is here: https://devcentral.f5.com/questions/apm-clientless-mode&nbsp;

Forum Discussion

APM basic authentication workflow possible without a redirect to /my.policy?

1 Reply

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Doing mTLS Authentication per URL

Distributed caching of authentication requests with NGINX Ingress Controller

Application Programming Interface (API) Authentication types simplified

iControl REST Authentication Token Management