Manual Chapter : Creating an Ephemeral Authentication Configuration

Applies To:

Show Versions Show Versions

BIG-IP APM

  • 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0
Manual Chapter

Creating an Ephemeral Authentication Configuration

Before you set up ephemeral authentication, make sure that basic system configuration is complete including configuring network interfaces, routes, VLANs, self IPs, DNS, and NTP.
You create an Ephemeral Authentication Configuration to specify the authentication method and ephemeral password usage for privileged user access.
  1. On the Main tab, click
    Access
    Ephemeral Authentication
    Authentication Configuration
    .
  2. Click
    Create
    .
  3. For
    Name
    , type a name for the Ephemeral Authentication Configuration.
  4. From the
    Authentication Method
    list, select the authentication method or methods (LDAP, RADIUS, or both) to use for ephemeral authentication.
    Enable only one authentication type (LDAP or RADIUS) if associating this Authentication Configuration with an SSO configuration (HTTP Basic or Form Based supported).
  5. Select
    One Time Only
    to enable one-time authentication using the ephemeral password.
    If not selected, the ephemeral password can be used multiple times until it expires.
  6. For
    Expiration in Minutes
    , type the number of minutes after which the ephemeral password expires.
    This value applies only when
    One Time Only
    is not selected.
  7. Click
    Save
    .
Access Policy Manager creates an Authentication Configuration and adds it to the list. You can use this in one or more Access Configurations or in an SSO configuration (HTTP Basic or Form Based are supported).