Send a deny to a radius user by parsing "username"

Question

There are certain devices on our network that need to continually request a login from a radius server from a bogus account.  This is done to ensure that they see the radius service as "up". 
&nbsp;  
&nbsp; Since this is done, we get thousands of lines of log messages pertaining to this bogus account on the radius server. 
&nbsp;  
&nbsp; I need the F5 to send a "deny" back to anyone that tries to authenticate with this "bogus",predetermined account information. 
&nbsp;  
&nbsp; Any ideas?  Thanks in advance.

colin_walker_12 · Answer

You'd want to parse the incoming request to find the user and see if it matches your bogus one.  If so, just send a response with UDP::respond. 
&nbsp;  
&nbsp; There's a great example of someone doing some in-depth Radius parsing in the CodeShare - Click here 
&nbsp;  
&nbsp; HTH, 
&nbsp; Colin

Forum Discussion

Send a deny to a radius user by parsing "username"

Recent Discussions

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Need Urgent BIGIP Trial License and VM Image

APM for banner and cert

How to Renew F5 Device Certificate

UCS backup not loading Big IP DNS pool

Related Content

Json parsing with iRules

iRule based RADIUS Client Stack

iRule based RADIUS Health Monitor Builder

iRule based RADIUS Server Stack

Parsing tmsh command output with Python TextFSM module and some Lessons learned

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS