For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

JimW_156953's avatar
JimW_156953
Icon for Nimbostratus rankNimbostratus
Jan 04, 2016

APM - Collecting smartcard session variable

Hello:   successfully deployed SSLVPN solution using smartcard to a government customer. All works great except when the client uses SmartCard the username is not captured in APM session logs. It...
BIG-IP Access Policy Manager (APM)
security
smart card
ssl vpn
Michael_Koyfma1's avatar
Michael_Koyfma1
Icon for Cirrus rankCirrus
Jan 04, 2016

Hmm, that's a bit strange. Can you please check and see which session variables get set/populated during your policy execution? I don't recall exactly which one is used for username reporting, but it's one of these two:

 

session.logon.last.logonname session.logon.last.username

 

You can check the value of those variables from the CLI by using the sessiondump command(so check what is set under non-debug mode). If you discover that one or the other is NOT set, try assigning the missing value during the VPE execution and see what happens.