In this scenario, the objective is to allow some specific URL path (i.e. "www.mydomain.com/myallowedpath") to be accessed without requiring authentication when that resource is hosted behind a virtual server (LB/CS) that has authentication enabled.

Such that, when a user accesses www.mydomain.com or any other resource except the specific URL "www.mydomain.com/myallowedpath" they will be required to authenticate. However, if they access "www.mydomain.com/myallowedpath" that specific path will not require the user to authenticate.

Instructions

Create an authentication policy of type NOAUTH with an action of NO_AUTHN and specify the URL that should bypass authentication in the policy expression. 

Below is an example, using the CLI:

add authentication Policy NoAuthn_URL -rule "HTTP.REQ.URL.CONTAINS(\"myallowedpath\")" -action NO_AUTHN

Make sure that when the policy is bound, it is bound with a higher priority (lower number) than any other policies that require the user to authenticate.