Forum Discussion
Kai_Wilke
Jan 21, 2016MVP
Hi SysThopher,
since nobody has answered yet, I'll take my luck and try to help out... ;-)
The LDAP Proxy iRule is very advanced and developed for a very specific purpose. I guess it would require some pretty good LDAP protocol knowledge (or enought time to study all the required opcodes) to change this rule with success.
To estimate the required effort, you may answer a few simple questions...
- Is your LDAP application using a "simple" LDAP bind? (you may ask the vendor or use wireshark)
- Are your users providing a NT-DOMAIN or UPN notation or any other prefix or suffix that can be mapped to a given LDAP instance? Note: It would be already enough, if just one of your LDAPs uses a fixed convention...
- Are you using the LDAP just for a pure bind authentication, or do you need to read/write access to it?
- Are your application require LDAP or LDAPS access?
Cheers, Kai