Trying to block users from using Outlook mobile app

Question

During our 365 migration, a few users have had issues with accounts locking out. We have F5 running as a load balancer and I can see bad sessions come in from the Outlook mobile app. Trying to delete the account off the user's mobile device does not fix the issue. I want to drop any sessions for the Outlook app for these users. I am very new to F5 and don't have much experience with the iRules. I created an iRule group with the usernames of these users called OutlookAppUsers and have the following iRule:

when HTTP_REQUEST {

if { [class match [HTTP::header "User-Agent"] contains "Outlook-iOS-Android"] and [class match [HTTP::username] contains OutlookAppUsers] }

{

drop

}

Not surprised that it didn't work. Just looking for some guidance. Thank you.

peterwaz · Answer

For future reference, I figured out my issues with this. First, I changed the first part of the IF statement to [class match [HTTP::header "User-Agent"] contains OutlokApp] and created a group with the possible iterations of the Outlook App header. I then also realized that I did not add the rule to a virtual server, so it was never running. Once I did both, the rule worked.

Forum Discussion

Trying to block users from using Outlook mobile app

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Kubernetes cert-manager + LetsEncrypt + F5

ACME DNS RFC-2136 Let's Encrypt certs

MAC users unable to access Internet when on Netskope

Could not communicate with the system. Try to reload page.

F5 mssql health monitor failing

Related Content

Protecting Your Native Mobile Apps with F5 XC Mobile App Shield

Making Mobile SDK Integration Ridiculously Easy with F5 XC Mobile SDK Integrator

Bot Defense for Mobile Apps in XC WAAP Part 1: The Bot Defense Mobile SDK

Mobile Security: Current Challenges & A Vision For The Future

Outlook NTL Authentication

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS