For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Yaoxie_117356's avatar
Yaoxie_117356
Icon for Nimbostratus rankNimbostratus
Jul 05, 2016

how can I see a password session variable ?

Hi experts,   For troubleshooting purpose, Whether/how can I see a session variable such as session.logon.last.password?   I tried https://support.f5.com/kb/en-us/solutions/public/11000/100/so...
application delivery
BIG-IP Access Policy Manager (APM)
Michael_Jenkins's avatar
Michael_Jenkins
Icon for Cirrostratus rankCirrostratus
Jul 05, 2016

From what I've seen, the only real way to do this is by copying the secure value to a non-secure variable in a VPE branch rule. See this question (and possibly this one if you're running 11.4) for more info.

Basically, you'll need to get the password value in a VPE branch rule and set it to a normal variable. It seems you can't get secure variables from within an iRule or other places besides during the policy workflow. Taken from Kevin's response on the first question I referenced, you may do something like this: 

session.custom.pass = return [mcget -secure {session.logon.last.password}]

Hope this helps.