Session Time-out based on the username

Question

Hi All,&nbsp;We have a requirement to assign the session time-out for the ssl-vpn based on the username. I did create the below irule, however its not getting the username, hence the class match line will not match.  I did add the log statement for the variable userid, however i have noticed the irule is getting triggered right after the vpn request hits the APM.  I doubt if its the right event to capture the session variables. It would be great if i can get some help here.&nbsp;when ACCESS_SESSION_STARTED {set userid [mcget {session.logon.last.username}]set userip [ACCESS::session data get "session.user.clientip"]	if {[class match $userid equals Userid_Custom_7_days]} {		ACCESS::session data set session.max_session_timeout "604800"		log local0. "Incomming userid : $userid and the session-timeout is 7-Days"	} else {			ACCESS::session data set session.max_session_timeout "86400"		log local0. "Incomming userid : $userid and the session-timeout is 24-Hours"		}&nbsp;}&nbsp;&nbsp;Thanks,Reddy

reddy1 · Answer

Update !!&nbsp;I had this re written under the HTTP event, its now able to get the username.

Forum Discussion

Session Time-out based on the username

Recent Discussions

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

NetScaler to F5 Migration

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Related Content

no reply from big3d: timed out

VPN Session time-out

The BIG-IP Application Security Manager Part 9: Username and Session Awareness Tracking

Persist connection based on NTLM username

Office 365 Logon Enhancement – Username Capture

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS