Forum Discussion

Nimbostratus

May 25, 2016

Separate domain cookie for different apps

Hey everyone, I have an application that requires two VIPs to be able to authenticate users. Users sign into an F5 logon page and the F5 does a form post to an application. On success, this a...

application delivery

BIG-IP Access Policy Manager (APM)

LTM

Arnaud_Lemaire

Employee

May 25, 2016

you have a new option for policy in V12 : Profile Scope

This setting prevents a malicious user from establishing a session using one virtual server, and then using that same session to access, potentially without further authentication, another virtual server and the resources behind it.

Profile Gives a user access only to resources that are behind the same access profile. This is the default value.

Virtual Server Gives a user access only to resources that are behind the same virtual server.

Global Gives a user access to resources behind any access profile that has global scope

If you are in a version below maybe you can use sso multi domain support with cookies restricted to host name.

Forum Discussion

Separate domain cookie for different apps

Recent Discussions

BWC iRule

Citrix XenServer Big-IP Upgrade help

iRule condition - request contains more than 10000 parameters

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Log separation by event

Enriching AFM with public domain Threat Intelligence

https and separate port VS

Separating False Positives from Legitimate Violations

domain blocking