Forum Discussion

Christoph_Fris1's avatar
Icon for Nimbostratus rankNimbostratus
May 14, 2018

APM different authentication mechanism based on Hostname



i wanted to know if it is possible to have for example two different authentication mechanism in one Access Profile and based on the URL which i enter the APM decides which one is used.


Configuration: - One virtual server, assigned with the ECA profile in order to use NTLM authentication ltm virtual vs_app-login-sso { description "App for LDAP Login and NTLM SSO" destination ip-protocol tcp mask pool pool_app-qual profiles { Login_SSO { } clientssl-insecure-compatible { context clientside } eca { } http_redirect_rewrite_all { } rba { } tcp { } websso { } } rules { irule_ECA_NTLM_Auth } source source-address-translation { type automap } translate-address enabled translate-port enabled vs-index 17 }


iRule: when HTTP_REQUEST { ECA::enable ECA::select select_ntlm:/Common/ntlm_auth }


And here is the Access Profile:


So the first entry point is "Landing URI", the profile should decide when i come with the Login URL it should use LDAP Login Page and if i come with the SSO URL it should use NTLM.


Both authentication are working when they are used in seperate profiles but not combined in one.


Is this possible or not? Hope everything is described clearly, if not just ask :)


Thanks, Christoph