Users logging

Question

Hi,&nbsp;
Is it possible to view (and log) with iRule a username of the clients that access an applicatrion server through the VIP on the BigIP with LTM module only?&nbsp;
Thank in advance&nbsp;
Brgds&nbsp;

nitass · Answer

how can we get a username e.g. what authentication method is application using?

jo_31162 · Answer

Hi nitass,&nbsp;
authentication is performed via LDAP, standard 636 TCP port.&nbsp;
Traffic flow is internal, client-to-VIP-to-server.&nbsp;
Tks&nbsp;

nitass · Answer

sorry i still do not understand. 
&nbsp;  
&nbsp; just a quick question. if you run tcpdump/ssldump on bigip when user do authentication, will you see a username?

kevin_stewart · Answer

The bigger question perhaps is if LDAP is traversing the VIP? You also said port 636, so assuming LDAPS? Is it an LDAP client passing through a port 636 VIP, or is this another protocol entirely and LDAP(S) used in another way? 
&nbsp;  
&nbsp; Just for semantics though, if this is an LDAP(S) VIP, and you're decrypting (and potentially re-encrypting) the SSL layer, then it would be possible to grab the BIND message in the LDAP stream. It's not intuitive, but it is possible.

Forum Discussion

Users logging

4 Replies

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

SSL cipher

CPU utilization of F5OS on r2600

F5OS VLAN naming length restrictions

iApps with load ucs Platform-migrate on newer hardware

Raise your hand if you'll be at AppWorld 2026

Related Content

F5 XC Session tracking and logging with User Identification Policy

DEVCENTRAL END-USER LICENSE AGREEMENT

Forwarding Logs to SIEM Tools via HTTP Proxy for F5 Distributed Cloud Global Log Receiver

F5 Distributed Cloud Telemetry (Logs) - Loki

SSL Orchestrator Service Extensions: User Coaching

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS