apm policy agent logon-page
apm policy agent logon-page(1)BIG-IP TMSH Manualapm policy agent logon-page(1)
NAME
logon-page - Manages a Logon Page agent.
MODULE
apm policy agent
SYNTAX
Configure the logon-page component within the policy agent module using
the following syntax.
CREATE/MODIFY
create logon-page [name]
modify logon-page [name]
options:
app-service [[string] | none]
basic-auth-realm [[string] | none]
customization-group [[string] | none]
field-modifiable1 [true | false]
field-modifiable2 [true | false]
field-modifiable3 [true | false]
field-modifiable4 [true | false]
field-modifiable5 [true | false]
field-type1 [checkbox | none | password | text]
field-type2 [checkbox | none | password | text]
field-type3 [checkbox | none | password | text]
field-type4 [checkbox | none | password | text]
field-type5 [checkbox | none | password | text]
http-401-auth-level [basic | basic-negotiate | negotiate | none]
post-var-name1 [[integer] | none]
post-var-name2 [[integer] | none]
post-var-name3 [[integer] | none]
post-var-name4 [[integer] | none]
post-var-name5 [[integer] | none]
session-var-name1 [[integer] | none]
session-var-name2 [[integer] | none]
session-var-name3 [[integer] | none]
session-var-name4 [[integer] | none]
session-var-name5 [[integer] | none]
clean-sess-var1 [true | false]
clean-sess-var2 [true | false]
clean-sess-var3 [true | false]
clean-sess-var4 [true | false]
clean-sess-var5 [true | false]
split-username [true | false]
type [401 | form-based]
edit logon-page [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
non-default-properties
DISPLAY
list logon-page
list logon-page [ [ [name] | [glob] | [regex] ] ... ]
show running-config logon-page
show running-config logon-page [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
non-default-properties
partition
show logon-page
show logon-page [name]
DELETE
delete logon-page [name]
DESCRIPTION
You can use the logon-page component to create and manage a Logon Page
agent. This agent creates a logon page that includes the form in which
users input the credentials required by an access policy. You can use
the customization-group option to customize the logon page.
EXAMPLES
create logon-page MyLogonPageAgent my { type 401 basic-auth-realm
myrealm split-username false http-401-auth-level none }
Creates a basic authentication Logon Page agent named
MyLogonPageAgent that results in a 401 response.
list logon-page
Displays a list of Logon Page agents.
delete logon-page MyLogonPageAgent
Deletes the Logon Page agent named MyLogonPageAgent.
OPTIONS
app-service
Specifies the name of the application service to which the object
belongs. The default value is none. Note: If the strict-updates
option is enabled on the application service that owns the object,
you cannot modify or delete the object. Only the application
service can modify or delete the object.
basic-auth-realm
Specifies the system being accessed for HTTP basic authentication.
This value is shown in the 401 response. Use this option only for
basic authentication Logon pages.
clean-sess-var1 - clean-sess-var5
Specifies whether session variable under corresponding sess-var-
name would be cleaned before logon page appearance (i.e. agent
execution) or not. Works only with form-based authentication.
customization-group
Specifies a predefined configuration that contains several
settings that you want the agent to use to configure a logon page.
This setting is required, and the customization group that you
assign must be of the type logon. Use this option only for basic
authentication Logon pages.
field-modifiable1 - field-modifiable5
Specifies whether the user can modify the contents of the field on
a form-based Logon page. The default is true. You can use this
option to display read-only information. A Logon page contains can
have a maximum of five fields. Use this option only for form-based
Logon pages.
field-type1 - field-type5
Specifies the type of fields on a form-based Logon page. The
default is text. Use this option only for form-based Logon pages.
The options are:
checkbox
none
password
text
http-401-auth-level
Use this option only for basic authentication Logon pages. The
options are:
basic
basic-negotiate
negotiate
none
[name]
Specifies the name of a Logon Page agent. This setting is
required.
partition
Displays the partition within which the component resides.
post-var-name1 - post-var-name5
Specifies the name of the variable that is sent with POST request.
Use this option only for form-based Logon pages.
sess-var-name1 - sess-var-name5
Specifies the session variable from which the initial value is
taken. Use this option only for form-based Logon pages.
split-username
Specifies whether the user's input is split into username and
domain. This option supports UPN style logon ID (userid@domainid)
and Windows Domain User account ID (domainid\userid). The default
is false. Set this to true when you want to store the username and
domain separately.
Use this option only for basic authentication Logon pages.
type Specifies the type of logon page that appears. The options are:
401 Displays a basic HTTP authentication form.
form-based
Displays a logon page.
SEE ALSO
external-logon-page
COPYRIGHT
No part of this program may be reproduced or transmitted in any form or
by any means, electronic or mechanical, including photocopying,
recording, or information storage and retrieval systems, for any
purpose other than the purchaser's personal use, without the express
written permission of F5 Networks, Inc.
F5 Networks and BIG-IP (c) Copyright 2011-2013, 2016. All rights
reserved.
BIG-IP 2016-10-03 apm policy agent logon-page(1)