Forum Discussion
Moorthy_63564
Nov 17, 2010Nimbostratus
iRule for knowing the user
Hi,
Can a LTM “know” – which user a request is coming from? It should know because it is an Application Level Proxy.
Can this user information be captured? Based on the user information can an AD group attribute be retrieved? And based on the group retrieved – can a load balancing decision be taken to redirect the user to a higher performance pool – compared to another group that gets redirected to a regular pool?
Moorthy.
- Moorthy_63564NimbostratusCan a LTM “know” – which user a request is coming from? It should know because it is an Application Level Proxy.
- L4L7_53191NimbostratusMoorthy: the answer here is yes - put the APM module onto a BigIP and all of this should be possible. Check with your Field Systems Engineer about what the requirements are and they'll be able to help you sort through any details. To sum it all up though, APM can serve as a generic authentication proxy, and as such it's privy to all of the information you'll be interested in (and much, much more). So you'll fetch the attributes in question, then make some smart decisions on where folks should go based on whatever AD ships back.
- Moorthy_63564Nimbostratus
Hi Matt,
Thanks for your reply,I got your answer,but Here my setup is the LTM is going to loadbalance the Proxy servers. so my requirment is i want to know which user going through which proxy server. Is it possible? to get that report (without ASM) by iRule.
- JRahmAdminyes, it is possible. There are several examples in the codeshare regarding ldap, this one should get you started:
- hooleylistCirrostratusYou can parse the username (and password) from requests and select a pool based on that information.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects