Forum Discussion
Joshua_106551
Mar 26, 2014Nimbostratus
Michael, We have implemented the solution you provided. The problem we keep running into is the NTLM username variable is always blank. I have added several message box's throughout the flow and everything passes except the very last step which is the AD Query. I have tested via several browsers and firefox seems to work the best for us. One time we made some changes to browser settings and for one session we were able to see the username variable was set. Out of hundreds of tests only one time have we seen the username variable get populated.
Thoughts?
- Michael_Koyfma1Mar 26, 2014CirrusSomething is really weird there. What version of the BIG-IP are you using? If things fail at AD Query, you need to concentrate your efforts on why. After successfully NTLM authentication and session in progress you should be able to look at the Session Variables in the reports and see the *.ntlm* values - if the username is populated there, then you need to focus on why AD Query fails. If not, perhaps you can post a copy of your access policy so that we can take a look?