Recently I was helping a customer address a multi-factor authentication bug where the 3rd party MFA solution would post the username and temporary token back to APM via the wrong URL. While we worked with the partner to address this bug the customer needed a work around in the meantime... perfect time for an iRule! For … Continue reading 302 vs 307: All about the POST
Collaborate in the Cloud
SaaS/PaaS conversations are coming up more and more in my customer meetings. I think it is important to understand the difference between authentication and authorization and what fits a cloud model and what does not. This post does a great job of outlining some of the strengths F5 Access Policy Manager provides in regards to … Continue reading Collaborate in the Cloud
APM Citrix Client Bundle for StoreFront 2.6 HTML5 Receiver
If you're using Citrix StoreFront 2.6 and following the Citrix-VDI-iApp 2.0.0 deployment guide you may run into a snag while creating the Citrix Client Bundle for HTML 5 support (on page 45). In StoreFront 2.6 the Citrix HTML5 Receiver is no longer a standalone MSI file but is now bundled into the StoreFront 2.6 executable. … Continue reading APM Citrix Client Bundle for StoreFront 2.6 HTML5 Receiver
APM Cookbook: Multiple Domain Authentication – Part 2
In this series we examine ways to make APM authenticate against multiple Active Directory Domains. Part 1 discussed the use of a drop down menu on the APM login page. In Part 2 we use the user’s UPN to determine the correct domain for authentication. Note: If you are following along through the series I recommend … Continue reading APM Cookbook: Multiple Domain Authentication – Part 2
APM Client Side NTLM Authentication – 3 Things to Watch
APM has a nice feature that allows seamless authentication for domain joined machines by leveraging NTLM and/or Kerberos authentication. Michael Koyfman has a great article on DevCentral titled Leveraging BIG-IP APM for seamless client NTLM Authentication that will walk you through the steps. I've implemented this a few times and I wanted to share some … Continue reading APM Client Side NTLM Authentication – 3 Things to Watch
Protected: Agility 2014 – VDI the F5 Way (201) Lab Guide
There is no excerpt because this is a protected post.
F5 Networks – Agility 2014
Agility is F5 Networks' annual user and partner conference that offers lab training session, product overviews and breakout sessions on hot topics. This year Agility is is being held in New York City at the Marriott Marquis in Time Square August 4th through the 6th. The Agility lab training sessions are all new this year … Continue reading F5 Networks – Agility 2014
BIG-IP Troubleshooting 101
When you work with any technology there reaches a point where the "it's a black box" approach is no longer valid and you have to dig in a little deeper and understand how the product works. With F5 BIG-IP this means understanding how traffic flows through the appliance and how to monitor and watch it. … Continue reading BIG-IP Troubleshooting 101
Clustered Multi-processing (CMP) versus Traditional Shared Memory Architecture
Over on DevCentral Robert Haynes has posted a great article outlining the advantages of F5's clustered multiprocessing (CMP) architecture versus traditional shared memory architecture. So why does this matter? Because attacks today are designed to stress the performance of security devices and bring them to their knees. If your architecture is designed correctly then it … Continue reading Clustered Multi-processing (CMP) versus Traditional Shared Memory Architecture
SAML – Client versus Server Authentication with F5 APM
As organizations start to utilize Software as a Service (SaaS) the concern on how to authenticate users becomes a critical security issue. Many organizations look to federated authentication mechanisms, such as SAML, to help address this security risk. The benefits of using SAML are that user credentials are not replicated across each vendor cloud instance … Continue reading SAML – Client versus Server Authentication with F5 APM
Cody Green 