Forum Discussion
Michael_Koyfma1
Cirrus
Yes, it's possible to accommodate. You would need to repeat the instructions in the article to have APM join second domain and create an account there. Basically, create NTLM MAchine Account and NTLM Auth objects for the second domain. Then the tricky part comes in modifying the irule. The NTLM AUth object used is currently hardcoded here:
set static::appname_ntlm_config "/Common/appname_ntlm_config"
Then the variable is being used in this command:
ECA::select select_ntlm:$static::appname_ntlm_config
You probably want to replace the ECA::select command with an if statement that will set the name of the NTLM auth profile based on the source IP of the connection.
Michael_Koyfma1
Apr 10, 2015Cirrus
It's dangerous - if you do that, you will end up in a an infinite loop. Another thing you can do is to you can force to run Windows Checker on the device and you can extract which domain the device belongs to - and you can use that info to select the right NTLM profile to be used.