Kaloyan
Jun 12, 2020Cirrus
APM VIP with exchange servers and NTLM authentication
I used the exchange 2016 iApp ( latest version) to setup one VIP with all services behind it.
The problem is that /mapi* should be with NTLM authentication, but rest of it like /owa is using basic authentication.
Right now the policy is setup with logon page -> LDAP Authentication -> SSO credential mapping - Allow
Pretty standard. The question is, could I insert upfront logon page NTLM check based on URI ?
Something like this :
and iRule , if needed :
when HTTP_REQUEST {
if { [HTTP::uri] starts_with "/mapi" } {
ECA::enable
ECA::select select_ntlm:/Common/ntlm-auth-exchange-2016
} else {
ECA::disable
}
}