Forum Discussion

Nimbostratus

Jan 20, 2016

F5 LTM virtual server with dual LDAP sources using LDAP Proxy iRule

Hey everyone, I'm looking to setup an LDAP virtual servers, but I need it to be able to check against two different domain LDAP sources. We have two domains and users who need to access an app...

MVP

Jan 21, 2016

Hi SysThopher,

since nobody has answered yet, I'll take my luck and try to help out... ;-)

The LDAP Proxy iRule is very advanced and developed for a very specific purpose. I guess it would require some pretty good LDAP protocol knowledge (or enought time to study all the required opcodes) to change this rule with success.

To estimate the required effort, you may answer a few simple questions...

Is your LDAP application using a "simple" LDAP bind? (you may ask the vendor or use wireshark)
Are your users providing a NT-DOMAIN or UPN notation or any other prefix or suffix that can be mapped to a given LDAP instance? Note: It would be already enough, if just one of your LDAPs uses a fixed convention...
Are you using the LDAP just for a pure bind authentication, or do you need to read/write access to it?
Are your application require LDAP or LDAPS access?

Cheers, Kai

Forum Discussion

F5 LTM virtual server with dual LDAP sources using LDAP Proxy iRule

Recent Discussions

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

BWC iRule

Can iRule be used to perform exception of IPI category based on Geolocation

help irules for compatibilty

Wildcard SSL Certificate Deployment on F5 LTM

Related Content

LDAPS account interception through Virtual Server - Is it possible

Block Active-Sync on Virtual Server

Script to find virtual servers with connection mirroring enabled

I can't create a virtual server on f5

Loadbalancing Virtual Server as Nodes