Forum Discussion

Employee

Sep 14, 2010

AD Query after logon to select domain for AD Auth

I am trying to figure out how to use the username provided on the Logon page to select the appropriate domain to AD Auth against. What I have done so far that fails is to use a branch rule per domain ...

app sec

BIG-IP Access Policy Manager (APM)

security

Maurice_G_

Employee

Oct 12, 2010

I got it worked out.

See my policy below

~~Access Policy: DDINet-Win7 (Endings: Allow, Deny [default])~~

~~Start fallback Successful fallback Succeed~~

~~Fail~~

~~fallback~~

~~Macro: AD-AUTH-ASIA (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: AD-AUTH-AU (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: AD-AUTH-UK (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: AD-AUTH-US (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: LDAP Query UPN (Terminals: Succeed [default], Fail) Use Count: 1~~

~~In fallback WIN7-US Succeed Out~~

~~Fail~~

~~WIN7-UK Succeed Out~~

~~Fail~~

~~WIN7-ASIA Succeed Out~~

~~Fail~~

~~WIN7-AU Succeed Out~~

~~Fail~~

~~fallback WIN7-US Succeed Out~~

~~Fail~~

~~WIN7-UK Succeed Out~~

~~Fail~~

~~WIN7-ASIA Succeed Out~~

~~Fail~~

~~WIN7-AU Succeed Out~~

~~Fail~~

~~fallback~~

~~Macro: US-Assign-Resources (Terminals: Out [default])~~

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

AD Query after logon to select domain for AD Auth

Tyler - May 2026 Featured Member

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

F5 Send email and snmp trap from LTM log event

shame on f5

Dynamic import of data groups

ASM allow specific url from outside country of geolocation ON

AWAF Detection Inconsistency Between Similar Test Payloads

Related Content

Route Domains

Select pool member based on HTTP query string parameter

Enriching AFM with public domain Threat Intelligence

iRuleLX Solution for OAUTH JWT authenticated Salesforce Query

Selective SNAT

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS