Forum Discussion

Nimbostratus

Nov 26, 2009

LDAP authentication with specific attribute

We have a situation where we need to do URL authentication based on the makeup of a URL. For example, a URL containing the string "a-" should be accessible to staff only, and a URL containing the stri...

config

design

hoolio

Cirrostratus

Dec 09, 2009

So the fix for that problem was just setting a group attribute to "member" on the auth config:

auth ldap ad_ldap_auth_config {

debug enable

search base dn "CN=Users,DC=example,DC=net"

bind dn "CN=Administrator,CN=Users,DC=example,DC=net"

bind pw "my_account"

check host attr enable

group dn "CN=bigip_users_1,CN=Users,DC=example,DC=net"

group member attr "member"

servers "1.1.1.1"

}

But I'm still not clear on how you're using two auth profiles and iRules on the same VIP. If you're still working on this, can you elaborate on your current auth profile config?

Thanks,

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

LDAP authentication with specific attribute

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

HA Failover between two Datacenters

LTM issue Openning new web browser tab

F5 asm/awaf

Cannot ping external interface

AST Configuration Assistance

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

MTLS - How to authenticate a specific certificate

APM-Specific Features for Securing Your Website

AD Authentication using multiple user attributes

Add SameSite attribute to APM Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS