NiHo_202842
Jun 30, 2015Cirrostratus
Cannot get domain in iRule after APM logon page
Hi all.
I'm trying to get the domain forest out of the user logon. I enabled 'split domain' on the APM logon page, added a None-type domain field with domain session variable but
session.logon.last.domain
keeps returning nothing.
Point is currently we only match the username as you can see. But we don't xx-D/user to authenticate in favour of AVI-DC/user. We only configured one AD server, but I believe this one will forward the authentication to others.
Any suggestions?
(as always, irule pasting here is horrible.) irule: http://pastie.org/private/poewrrnepgbylxih7wyvsw
Don't really get the iRule used here.
If you enable split domain, basically the logon agent will break the logon.last.logonname to logon.last.username and logon.last.domain. So user might enter the logonname like
oruser@mydomain.loc
mydomain.loc\user