Forum Discussion

Nimbostratus

Jul 05, 2010

What is in [AUTH::response_data] with auth_ssl_cc_ldap authentication

Hi, I have auth_ssl_cc_ldap working. It checks for the existence in the LDAP server of the user based on the CN in the client certificate. Now I need an irule that checks that a fi...

Employee

Jul 07, 2010

Arthur,

Two things:

1. Hoolio is absolutely correct that the CN is hardcoded in the auth_ssl_cc_ldap LDAP mechanism.

2. [AUTH::response_data] doesn't return anything in this method. I don't believe it ever has. I could be wrong, but I've expended more than a few brain cells trying to get this to work myself.

Bottom line: you may want to consider using the Access Policy Manager. It has full access to LDAP, so you can query FOR any arbitrary value, and WITH any value.

HTH

-- Kevin

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

What is in [AUTH::response_data] with auth_ssl_cc_ldap authentication

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

iControl REST Authentication Token Management

Doing mTLS Authentication per URL

Two-Factor Authentication With Google Authenticator And APM

APM Sharepoint authentication

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS