For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

MichaelJordan_1's avatar
MichaelJordan_1
Icon for Nimbostratus rankNimbostratus
Jun 24, 2015

Here is the working "Variable Assignment". Rule order is important!

 

  • [S] session.logon.last.password = expr {[mcget{session.otp.assigned.val}]}
  • session.logon.last.username = return [expr [string map {" " ""} [mcget {session.ad.last.attr.mobile}] ] ]
  • session.logon.last.username = return [string range [mcget {session.logon.last.username}] end-9 end]
THi's avatar
THi
Icon for Nimbostratus rankNimbostratus
Jun 24, 2015
Think you don't want to assign the OTP value to session.logon.last.password before sending it out? The OTP value will be entered by the user at the logon page box, right after the http auth box where it is sent to SMS gateway, and it will be stored to session.logon.last.password variable and verified against the session.otp.assigned.val in the OTP Verify box.