The combination of Multiple Domains Access Policy profile with irules

Hi, I need to run following simple irule scripts: when ACCESS_ACL_ALLOWED { set destination_doamin [ACCESS::session data get "session.logon.last.domain" ] if {$destination_doamin eq "domainA"} { log local0. "DOMENA, $destination_domain" WEBSSO::select NTLMv2_domainA_sso } if {$destination_doamin eq "domainB"} { log local0. "DOMENA, $destination_domain" WEBSSO::select NTLMv2_domainB_sso } }

when HTTP_REQUEST { set destination_doamin [ACCESS::session data get "session.logon.last.domain" ] if {$destination_doamin eq "domainA"} { log local0. "DOMENA, $destination_domain" pool APP-domainA } if {$destination_doamin eq "domainB"} { log local0. "DOMENA, $destination_domain" SSL::disable serverside pool APP-domainB } to ensure selection appropriate pool and sso method based on the domain in which the user is verified. Everything is OK if I´m using Access Policy profile in Single Domain Mode mode. But simultaneously with that irule scipts I need to use Multiple Domains Mode Access profile to ensure SSO across authentication domains. If I use Multiple Domains Mode commands such "WEBSSO::select NTLMv2_domainA_sso" or "pool APP-domainA" etc., these commands aren´t provided by script. Is it right behaviour with Access Policy with Multiple Domains Mode, please? My current software version : BIG-IP 11.6.0 HF5 Thank you Antonin