Forum Discussion

Altostratus

Oct 04, 2023

access policy to check for AD group membership based on URI

Hi. Trying to check for AD group membership to allow access to URL based on a string in the URI. In the Look for Login box, I'm using the branch rule expr {[mcget {session.server.landinguri...

application delivery

Amine_Kadimi

MVP

Oct 04, 2023

The variable "session.server.landinguri" will contain the first URI that triggered the access policy, and will not change each time you visit a new URI, so if you requested /home then /login, the first one will be your landing URI, the one that caused the creation of an APM session.

You shoud use another method to apply rules selectively depending on the requested URI, for example per request policy: Adding a URL branching rule (f5.com)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

access policy to check for AD group membership based on URI

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Access policy, LTM policy and iRules

F5 BIG-IP Access Policy Manager (APM) - Idp integration - Cisco vManage

ASM Policies role based access

F5's Access Policy Manager the Access Proxy for Zero Trust Architectures

Harnessing the power of F5 BIG-IP Access Policy Manager (APM) and Microsoft

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS