Forum Discussion

Cirrus

Feb 04, 2016

LTM+APM SSO only for designated Subnets

Hi, we have a Problem we have configured a virtual server with an access policy and NTLM-SSO. We use the authentication only for users of pubic subnets. If a user comes out of a private subnet w...

BIG-IP

BIG-IP Access Policy Manager (APM)

Cirrus

Feb 05, 2016

I think I am doing something wrong writing the iRule

I created an iRule "xxx" containing

when ACCESS_POLICY_AGENT_EVENT {

set WEBSSO::disable }

Then I added the iRule Event in a Box with the ID xxx in the VPM and attached the iRule to the VS but it will not work :/

in LTM Log I get

TCL error: /REVERSE_PROXY/apm_disableSSO - can't read "WEBSSO::disable": no such variable while executing "set WEBSSO::disable"

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

LTM+APM SSO only for designated Subnets

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

Webtop which has VNC for macos users

AST Configuration Assistance

Floating IP responds from wrong VLAN/trunk

expandsSubcollections and filtering in F5 SDK

F5 i-series Guests to r-series tenants migration

Related Content

Using Client Subnet in DNS Requests

Mitigating OWASP Web Application Insecure Design using F5 BIG-IP Advanced WAF

Verified Design: SSL Orchestrator with McAfee Web Gateway-Part 1

Mitigating OWASP Web Application Risk: Insecure Design using F5 XC platform

F5 BIG-IP in Cisco ACI Multi-Site and Multi-Pod - Design Options

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS