Trust Protection Platform 15.2 and above
F5 iControl Rest 11.5.x
F5 iControl Rest 11.6.x
Getting the following error when running Onboard Discovery:
Onboard Discovery \VED\Discovery\Onboard Discovery Job failed to get response from 'X.X.X.X'. Error: 'The request failed with HTTP status 401: F5 Authorization Required.'.
There are two reasons why you could potentially see this error:
- The credentials used on the device object are incorrect or do not have access to the F5. Fix the credentials and try again.
- The more likely cause is that the user is a Remotely Authenticated user (User Directory: TACACS+). F5 does not support Remote Authentication for iControl Rest API access in version 11.5.x. You will be able to login to the F5 Management Interface, but not the iControl Rest APIs.
Solution: Upgrade the F5 to version 12.x or use a locally authenticated user.
This can be tested outside of the the Venafi product by doing to following:
- Open a web browser.
- Put in URL: "https://Server_url_here/mgmt/tm/ltm/virtual/?expandSubcollections=true"
- You will be prompted for authentication. Try the user used for the Onboard Discovery. If the user works then Onboard Discovery will also work.
Forum URL describing the issue: