Forum Discussion

Employee

Sep 14, 2010

AD Query after logon to select domain for AD Auth

I am trying to figure out how to use the username provided on the Logon page to select the appropriate domain to AD Auth against. What I have done so far that fails is to use a branch rule per domain ...

app sec

BIG-IP Access Policy Manager (APM)

security

Maurice_G_

Employee

Oct 12, 2010

I got it worked out.

See my policy below

~~Access Policy: DDINet-Win7 (Endings: Allow, Deny [default])~~

~~Start fallback Successful fallback Succeed~~

~~Fail~~

~~fallback~~

~~Macro: AD-AUTH-ASIA (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: AD-AUTH-AU (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: AD-AUTH-UK (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: AD-AUTH-US (Terminals: Succeed [default], Fail) Use Count: 2~~

~~Macro: LDAP Query UPN (Terminals: Succeed [default], Fail) Use Count: 1~~

~~In fallback WIN7-US Succeed Out~~

~~Fail~~

~~WIN7-UK Succeed Out~~

~~Fail~~

~~WIN7-ASIA Succeed Out~~

~~Fail~~

~~WIN7-AU Succeed Out~~

~~Fail~~

~~fallback WIN7-US Succeed Out~~

~~Fail~~

~~WIN7-UK Succeed Out~~

~~Fail~~

~~WIN7-ASIA Succeed Out~~

~~Fail~~

~~WIN7-AU Succeed Out~~

~~Fail~~

~~fallback~~

~~Macro: US-Assign-Resources (Terminals: Out [default])~~

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

AD Query after logon to select domain for AD Auth

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Change severity for sod log messages

Rewrite content in XML schema file.

F5 APM Check Domain Membership

Question regarding F5 Viprion Configuration Migration to VE.

URL Redirect ? URL ReWrite ?

Related Content

Select pool member based on HTTP query string parameter

Enriching AFM with public domain Threat Intelligence

iRuleLX Solution for OAUTH JWT authenticated Salesforce Query

domain blocking

BIG-IP Advanced Firewall Manager (AFM) DNS NXDOMAIN Query Attack Type Walkthrough - part two

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS