LDAP auth depending on uri

Question

&nbsp;hi,&nbsp;
&nbsp;Is there a way to start authentication (prompting HTTP auth window to user and forwarding credentials to LDAP backend) only when uri starts with /need_auth/ but not /public and /?&nbsp;
&nbsp;VS with attached auth profile tries authenticate all traffic but I can't write iRule without profile anyway. So problem is bypassing authentication when uri does not match /need_auth.

tao_liu_90341 · Answer

you can make copy of rule _sys_auth_ldap in profile_base.conf. Change the corresponding section like bellow. And apply this rule to the auth profile.
    when HTTP_REQUEST {
        if {[HTTP::uri] contains "need_auth"} {
          AUTH::username_credential $tmm_auth_ldap_sid [HTTP::username]
          AUTH::password_credential $tmm_auth_ldap_sid [HTTP::password]
          AUTH::authenticate $tmm_auth_ldap_sid
          HTTP::collect
        }
    }

Forum Discussion

LDAP auth depending on uri

Recent Discussions

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

Related Content

LDAP Auth, LDAP Query with UPN fails

Google Authenticator iRule For Two-Factor Auth With LDAP

APM LDAP auth agent ldap bind works but search fails..

LDAP Proxy

Bolt-on Auth with NGINX Plus and F5 Distributed Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS