LDAPS account interception through Virtual Server - Is it possible

Question

Dear devcentral,&nbsp;I'm currently faced with an issue where an administrative user is being locked out because multiple attempts are failing.These attempts and connections, are routed through an F5 virtual server, which has Automap enabled, so the requests appear to be coming from the F5 itself.&nbsp;Is it possible, somehow, to intercept the username of this request and the client IP, in order to ascertain where the lockout attempts are coming from?&nbsp;Thanks a lot in advance

nikoolayy1 · Answer

If you can stop the SNAT Auto Map and configure your network and routing to return LDAP replies back to the F5 device ?

https://support.f5.com/csp/article/K14225515

You can also review this post:

https://devcentral.f5.com/s/question/0D51T00007BG1Pc/insert-client-ip-address-on-ldap-vs

Forum Discussion

LDAPS account interception through Virtual Server - Is it possible

Recent Discussions

Diameter iRules attachment?

Source IP F5 DNS Zone Forwarder

F5 BIG-IP

BIG-IP Oauth Client and AS

How to Renew F5 Device Certificate

Related Content

LDAPS account interception through Virtual Server - Is it possible

Create a DevCentral account

DNS Interception: Protecting the Client

Change admin account

DevCentral to Require Multi-Factor Authentication for Account Login from September 26

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS