APM Cookbook: Single Sign On (SSO) using Kerberos

To get the APM Cookbook series moving along, I’ve decided to help out by documenting the common APM solutions I help customers and partners with on a regular basis. Kerberos SSO is nothing new, bu...

Published Apr 28, 2014

Version 1.0

BIG-IP Access Policy Manager (APM)

Cirrostratus

Joined July 31, 2011

View Profile

Martin_Kylian_1

Nimbostratus

Nov 28, 2018

I have chosen the TCL way. AD query consumes time :)

Variable assign contains:

session.sso.token.last.username = expr { [regsub {(.+\|^)} [mcget {session.logon.last.username}] "" x; set username $x; regsub {(\@.+)} $username "" y; set username $y]}

session.ad.last.actualdomain = expr { [regsub {(\.+)} [mcget {session.logon.last.username}] "" x; set username $x; regsub {(.+\@)} $username "" y; set username $y]}

This splits the krb username@realm into two variables

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

APM Cookbook: Single Sign On (SSO) using Kerberos

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS