Applies To:Show Versions
- 14.0.1, 14.0.0
APM OAuth 2.0 support
OAuth roles that APM supports
OAuth 2.0 roles
Can grant access to a protected resource. A resource owner can be an end-user (person) or another entity.
Hosts protected resources, and can accept and respond to requests for protected resources using access tokens.
Makes requests for protected resources on behalf of, and with authorization from, the resource owner. The client is an application.
Issues access tokens to the client after successfully authenticating the resource owner and obtaining authorization.
APM in OAuth resource server and client
APM in the OAuth authorization server
BIG-IP system for two OAuth roles
- Configure APM to act as an OAuth client / resource server (or to act an OAuth resource server gateway).Follow the instructions inBIG-IP Access Policy Manager: Authentication and Single Sign-Onon the AskF5 web site located atsupport.f5.com.It doesn't matter whether you configure APM to act as an OAuth authorization server first or second. What's important is that you create separate virtual servers for each of the two configurations.
- Configure APM to act as an OAuth authorization server.Follow the instructions inBIG-IP Access Policy Manager: Authentication and Single Sign-Onon the AskF5 web site located atsupport.f5.com.In this step, be sure to configure a virtual server that is distinct from the one you configured for APM in the previous step.
- In your DNS configuration, configure two host names:
- Point one hostname to the virtual server configured for APM as an OAuth authorization server.
- Point the other hostname to the virtual server configured for APM in the other role (OAuth client / resource server or OAuth resource server gateway).