For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Cirrus rank

Cirrus

Oct 06, 2015

APM and Network Access Based on user's OU

I have several hundred clients who connect via SSLVPN and authenticate against a client AD domain. I need to apply access policy to each user based on their OU?

For example, username "Bruce.Leroy" is part of an OU=clientX and has access to 10.10.13.0/24

Any help is, as always, greatly appreciated.

BIG-IP Access Policy Manager (APM)

1 Reply

Brad_Parker
Cirrus
Oct 06, 2015
After authentication add an AD query and create branch rules based on the
expr { [mcget {session.ad.last.attr.ou}] contains "CN=MY_OU, DC=MY_DOMAIN" }
.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5