Forum Discussion
iRule with AD
Hi.
I'm new to iRule.
Actually, We have a Active Directory pool with BIG-IP LTM. I wanted to ask if is possible to create a iRule that log all for a given user.
For example, We want to log for "abcd" user each time is authenticated in a server. It's possible??
Thanks.
2 Replies
- nitass
Employee
prior to 11.5.0, you have to decode ASN.1 and parse ldap message yourself.
LDAP Proxy
https://devcentral.f5.com/wiki/iRules.LDAPProxy.ashxbeginning in 11.5.0, there is ASN1:: command available. anyway, you still have to parse ldap message yourself.
ASN1
https://devcentral.f5.com/wiki/iRules.ASN1.ashx - Kevin_Stewart
Employee
So you're actually load balancing AD servers? Which ports (389, 636, 445, 88, 53)? Parsing LDAP is not a trivial thing, with or without an ASN.1 decoder. Perhaps there's an easier way. Can you elaborate on how you have this configured?
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com