Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

Set session variable for local user db firstname and lastname

thanhtai1789
Altostratus
Altostratus

‎24-Jul-2022 08:52 - edited ‎24-Jul-2022 08:53

Hi team,

I am new to F5, I am currently setting F5 as custom IDP and here is my access policy (attach files). I want to load user first name and last name (a column in local user db) from local user db and save it into the session after user login success. How would I do it?

Does it work if I try to add Variable Assign step after LocalDB Auth with the entry: session.logon.firstname = expr {[mcget {session.localdb.firstname}]}  ?

Thank you in advance.

Labels:
Preview file
2564 KB
0 Kudos
5 REPLIES 5

LiefZimmerman
Community Manager
Community Manager

‎26-Jul-2022 13:43

@thanhtai1789 - if you haven't been able to resolve this yet let me know - I'll see if I can get an expert to take a look.

thanhtai1789
Altostratus
Altostratus
In response to LiefZimmerman

‎26-Jul-2022 19:40 - edited ‎26-Jul-2022 19:40

Hi @LiefZimmerman ,

Could you help me to ask an expert to take a look at this question, please? 

Thank you in advance.

buulam
Community Manager
Community Manager
In response to thanhtai1789

‎27-Jul-2022 13:51

Hi @thanhtai1789 I had a look and I'm afraid I don't see first/last name listed as session variables to work with. This is all I got for the localdb related variables in my testing (first/last name parameters were indeed set for this user):

42c3c3a.session.localdb./Common/ap_localdb_test_act_localdb_auth_ag.result 1 1
042c3c3a.session.localdb.last.result 1 1
042c3c3a.session.logon./Common/ap_localdb_test_act_logon_page_ag.logonname 3 buu
042c3c3a.session.logon./Common/ap_localdb_test_act_logon_page_ag.result 1 1
042c3c3a.session.logon./Common/ap_localdb_test_act_logon_page_ag.username 3 buu
042c3c3a.session.logon.last.logonname 3 buu
042c3c3a.session.logon.last.result 1 1
042c3c3a.session.logon.last.username 3 buu  

 

~~~~~~~~~~~~~~~~~~
@buulam / YouTube.com/DevCentral

thanhtai1789
Altostratus
Altostratus
In response to buulam

‎27-Jul-2022 19:43

Thank you very much @buulam .

Actually, I want to set up F5 as Idp, I use Localuser DB for authentication and I would like to load user data (firstname, lastname) from Localuser DB to add into SAML attributes (as the attached file of this reply). So I already tried to update the access policy as above in the attached file (add step Variable Assign after authentication step) to store firstname and lastname into session, but it didn't work. Do you have any suggestions for that @buulam ?

Preview file
1535 KB
0 Kudos

buulam
Community Manager
Community Manager
In response to thanhtai1789

‎28-Jul-2022 08:18

Hey @thanhtai1789 that's what the test I was doing was to check, if the parameters get pulled into session variables which would allow you to assign them into SAML attributes.

I just now confirmed that it's a feature that others have previously identified and requested. If you open a support case, you can add your name in support. Please quote RFE 439957

~~~~~~~~~~~~~~~~~~
@buulam / YouTube.com/DevCentral
Copyright © 2023 Khoros, LLC