NTLM Remote_User iRule

Question

I am trying to show the NTLM REMOTE_USER in the header when an HTTP request is made. Below is the apache language I am using. Can anyone point me in the right direction for an iRule to do the same?
`
      AuthName "NTLM Authentication"
      NTLMAuth on
      NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
      NTLMBasicAuthoritative on
      AuthType NTLM
      require valid-user
      RequestHeader set REMOTE_USER %{REMOTE_USER}s
      Order allow,deny
      Allow from all

`

kevin_stewart · Answer

If you're authenticating the user via APM NTLM, the authenticated username will be in the session.logon.last.username session variable.&nbsp;

kevin_stewart · Answer

I guess I should clarify, are you running APM? If so,
when ACCESS_ACL_ALLOWED {
    HTTP::header insert Remote_User [ACCESS::session data get "session.logon.last.username"]
}

Forum Discussion

NTLM Remote_User iRule

Recent Discussions

XC Bot defense question

UCS backup not loading Big IP DNS pool

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

BIG-IP Oauth Client and AS

F5 BOT DEFENSE AWAF blocked some legitimate browsers

Related Content

Persist connection based on NTLM username

NTLM Authenticated Proxy External Monitor

iRules Style Guide

Leveraging BIG-IP APM for seamless client NTLM Authentication

BIG-IP Next: iRules pool routing

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS