Preventing double login to server

Question

Hello,
&nbsp; 
&nbsp;One of my clients would like to do something like following:
&nbsp;They have web service where users need to be authenticated against external server such as Radius, before being redirected to the web service page. I think this is possible with ACA module.
&nbsp;After logging in, they want to prevent the same user from opening another session at the same time, even if the provided credentials are correct. &nbsp;
&nbsp;I suppose, in the context of Big-IP, desired behavior is, when a user connects to the web service through the virtual Server on Big-IP, if another session with the virutual server already exists that has been authenticated with the same user, then drop the request or redirect to another page where you are notified that you have another session...&nbsp;
&nbsp;I am guessing this kind of rule could be complex, since Big-IP need to store session information associated with user name. And every time request comes in, it need to check if sesson of the same user already exists.&nbsp;
&nbsp;Is this possible with iRule?
&nbsp;Any samples where this is accomplished??&nbsp;
&nbsp;Thanks in advance,&nbsp;

hoolio · Answer

I think it's possible.  There is a related post on counting/limiting sessions here:&nbsp;&nbsp;Click here&nbsp;
&nbsp;Aaron

Forum Discussion

Preventing double login to server

Recent Discussions

ppp TunnelStats: LCP_UNKNOWN_OPTIONS 1,LCP_PROTO_REJ 1,FSM_UNEXPECTED_DOWN 1,

How to Renew F5 Device Certificate

F5 ASM CEF Sending Logs in Specific TimeZone

F5 looses the token for the first call

feature request: container egress service

Related Content

Operationlizing Online Fraud Detection, Prevention, and Response

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

Stop Double Monitoring: NGINX Plus API Helping BIG-IP

High Performance Intrusion Prevention

SSL Orchestrator Advanced Use Cases: Integrating F5 Intrusion Prevention System (IPS)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS