Forum Discussion

gh0std0g_79292's avatar
gh0std0g_79292
Icon for Nimbostratus rankNimbostratus
Aug 02, 2012

need an iRule that contains a static read only username and password when accessing certain links

Here's the order of events:

 

 

1. User logs into Oracle, F5 is LTM only, and Oracle does the authentication.

 

2. User clicks on a link to download an item, such as /documents

 

3. /documents is actually a different backend server. (not sure how i'm doing this yet, vip targeting vip maybe?)

 

4. when the user requests a doc that exists on this other backend server, the f5 needs to send a username/pass to it, which will be a read-only service account, but also verify that the request is coming from an authenticated oracle session... so i'm thinking it will need to validate via a cookie obtained from the Oracle session.

 

 

 

Hopefully this makes sense... I think the initial hurdle is an iRule that contains and sends a static user/pass.

 

 

 

Thanks

 

2 Replies

  • What authentication method is the application using for the /documents requests?

     

     

    How do you want to verify a client has authenticated to Oracle?

     

     

    Aaron
  • I would verify a client authenticated by doing a cookie check.

     

     

    Authentication is AD auth, so NTLM.