When using NTLM as a pre-authentication protocol, the JSON Web Token (JWT) validation feature can be used to ensure only requests containing specific JWT tokens are accepted. This can be used on top of NTLM to provide extra authorization of requests.

Configure JSON Web Token Validation

To configure JSON web token validation, follow the steps below:

  1. In the LoadMaster WUI, go to Virtual Services > View/Modify Services and click Modify on the relevant Virtual Service.
  2. Expand the ESP Options section.
  3. Ensure NTLM is selected as the Client Authentication Mode.
  4. Configure any other settings as needed and as detailed throughout this document.
  5. Select the Verify Bearer Header check box.
  6. Select the relevant certificate/key used to decrypt the bearer header token from the Bearer Header Validation Certificate drop-down list (this must first be uploaded to the LoadMaster by going to Certificates & Security > SSL Certificates > Import Certificate).
  7. You can enter up to five bearer header validation strings (comma-separated list) in the Bearer Header Validation Text field.