For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Arthur_7109's avatar
Arthur_7109
Icon for Nimbostratus rankNimbostratus
Jul 05, 2010

What is in [AUTH::response_data] with auth_ssl_cc_ldap authentication

Hi,     I have auth_ssl_cc_ldap working. It checks for the existence in the LDAP server of the user based on the CN in the client certificate.     Now I need an irule that checks that a fi...
application delivery
dev
devops
iRules
Arthur_7109's avatar
Arthur_7109
Icon for Nimbostratus rankNimbostratus
Jul 07, 2010
Hi Aaron,

 

 

Thanks for the reply. I should have added that this was with release 10.2, and I've just verified that it is also in 10.1.

 

 

This is the log in the irule:

 

 

log "AUTH_RESULT -- [AUTH::status] -- [AUTH::response_data] --"

 

 

and this is what we see when authentication succeeds and fails.

 

 

01220002:6: Rule my_auth_irule : AUTH_RESULT -- 0 -- --

 

01220002:6: Rule my_auth_irule : AUTH_RESULT -- 1 -- --

 

 

I will open a case, and also argue for more cert validation options. I've seen a few similar posts here and I have a customer who'd need it as well.

 

 

Arthur