Forum Discussion

Nimbostratus

May 14, 2009

Filter users authenticatiing via NTLM (MOSS) by domain name

Hello, I was asked to filter certain users by their domain name (domain2\user or user@domain2) which are prohibited to connect to MOSS from the public internet, even though they may connect to the...

Nimbostratus

May 19, 2009

Thanks Aaron,

now it works. Here is my listing to filter NTLM-users that belong to domain2 "testdomain".

 
 when HTTP_REQUEST { 
  Check for Authorization header value starting with NTLM before trying to parse the request.  
   if {[string tolower [HTTP::header Authorization]] starts_with "ntlm"}{  
   if { [b64decode [getfield [HTTP::header Authorization] " " 2]] matches_regex {([Tt].[Ee].[Ss].[Tt].[Dd].[Oo].[Mm].[Aa].[Ii].[Nn])} }  {  
  HTTP::respond 200 content { 
        
           
             Apology Page 
           
           
 You are not allowed to authenticate as your user belongs to testdomain ... 
           
        
    } 
   } 
 }}

Thanks again and kind regards

Jackson

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)