One Time Passwords via an SMS Gateway with BIG-IP Access Policy Manager
Published Feb 08, 2011
Version 1.0Was this article helpful?
i fixed the rule it works on 11.2.1
when ACCESS_POLICY_AGENT_EVENT {
expr srand([clock clicks])
set tmpKey [CRYPTO::keygen -alg random -len 128 -passphrase [AES::key 128] -rounds 2]
set otp [string range [b64encode $tmpKey] 0 8[]]
set mail [ACCESS::session data get "session.ad.last.attr.mail"]
set mobile [ACCESS::session data get "session.ad.last.attr.mobile"]
set logstring mail,$mail,otp,$otp,mobile,$mobile
ACCESS::session data set session.user.otp.pw $otp
ACCESS::session data set session.user.otp.mobile $mobile
ACCESS::session data set session.user.otp.username [ACCESS::session data get "session.logon.last.username"]
log local0.alert "Event [ACCESS::policy agent_id] Log $logstring"
}
when ACCESS_POLICY_COMPLETED {
log local0.alert "Result: [ACCESS::policy result]"
}
-----
regards
Zafer Berber