FreeKB - Broadcom API Gateway Authenticate User or Group
Broadcom API Gateway - Authenticate User or Group

The Authenticate User or Group assertion can be used to ensure that a valid username and password is being used when prompted to authenticate. Before adding the Authenticate User or Group assertion, you would need to:

After adding the Authenticate User or Group assertion, you will want to right-click on the assertion, choose Select Target Message and select Request.

In this example, the Authenticate User or Group assertion is added to authenticate user jeremy.canfield.

 

When prompted to authenticate, if you provide a bogus username or password . . .

 

. . . the following will be displayed.

<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
 <soapenv:Body>
  <soapenv:Fault>
   <faultcode>soapenv:Server</faultcode>
   <faultstring>Policy Falsified</faultstring>
   <faultactor>https://api.example.com/example</faultactor>
   <detail>
    <l7:policyResult xmlns:l7="http://www.layer7tech.com/ws/policy/fault" status="Authentication Required"/>
   </detail>
  </soapenv:Fault>
 </soapenv:Body>
</soapenv:Envelope>

 

Likewise, the Gateway Audit Events will have Authentication Required (401). In this example, the Associated Logs tab in the Audit Log shows a bogus credentials were used in the request.

 

Let's now authenticate with valid credentails. If the user forgot their password, you can reset the users password.



Add a Comment




We will never share your name or email with anyone. Enter your email if you would like to be notified when we respond to your comment.




Please enter bd1d1 in the box below so that we can be sure you are a human.




Comments

Web design by yours truely - me, myself, and I   |   jeremy.canfield@freekb.net   |