For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

MichaelJordan_1's avatar
MichaelJordan_1
Icon for Nimbostratus rankNimbostratus
Jun 24, 2015

Here is the working "Variable Assignment". Rule order is important!

 

  • [S] session.logon.last.password = expr {[mcget{session.otp.assigned.val}]}
  • session.logon.last.username = return [expr [string map {" " ""} [mcget {session.ad.last.attr.mobile}] ] ]
  • session.logon.last.username = return [string range [mcget {session.logon.last.username}] end-9 end]
THi's avatar
THi
Icon for Nimbostratus rankNimbostratus
Jun 24, 2015
Now you are prepopulating the session.logon.last.password with the generated and correct OTP value (from session.otp.assigned.val). The user should enter it at the logon page and the the entered value should be compared with the session.otp.assigned.val for a match to allow proceeding in the flow. How have you defined the SMS gateway AAA server? Which session variable is sent to the mobile?