How to do an AD query sending UPN to AD, and have AD return the "short" name that I can use to authenticate against ldap with
LTM version 11.5.1 HF8
I currently have an APM access policy, deployed from Exchange iapp template version 1.4, which I modified to authenticate against LDAP, rather than direct to AD. User enters their short username, same as in AD, and after authenticating to LDAP I have an irule (thanks to my F5 SE!) that prepends the username with the domain for posting to Exchange. This works fine. Now however, I need to support Outlook Mobile, with Active Sync and autodiscover, which sends a user name that is the email address, aka the UPN in AD. I can't use that to authenticate in LDAP, so I need to take that UPN that would be in session.logon.last.username, send it to AD, and get the short name from AD, which I can then use to authenticate to LDAP with, and use the UPN to post to Exchange. As a side benefit, this would also allow Lync to retrieve Exchange info (meetings, saved chats, etc).
I'm assuming someone has already encountered and hopefully solved this....