get AD password using AD query

Question

hi,&nbsp;
im currently working on a apm setup, where the customer has different 2FA's depending on group membership.
Im struggling to get SSO to work on one of them, as they only validate using username+token.
Is there a way to use AD query to get the password, populate a variable assign, and use this for SSO?&nbsp;

stanislas_piro2 · Answer

Hopefully, Active Directory doesn't allow another system to retrieve AD Password!&nbsp;
If the user doesn't provide AD Password, the only solution is to use Kerberos SSO which doesn't require AD password to work.&nbsp;

youssef1 · Answer

Hello,&nbsp;
Another solution is to use saml.
As you know Citrix xenapp and xendesktop support SAML.&nbsp;
You can create an IDP hosted on your Equipement with wanted authentification regarding User rights (User + token). And bind this IDP with Citrix...&nbsp;
but as you specified Stanislas, you can't retrieve password in your directory and it's not a reliable solution (in terms of security and maintenance)...&nbsp;
Regards&nbsp;

Forum Discussion

get AD password using AD query

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Configuring an Application for Smart Card Authentication and Forms Based SSO Using a Static Username and Password

Enhance your Application Security using Client-side signals

F5 WAF query

AD password expired

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS