Forum Discussion
Alexander_01_13
Apr 11, 2014Nimbostratus
Finally I got the leisure to put together an irule to check for a successful rsa authentication on the critical server and to kill the session in case there is none.
when HTTP_REQUEST {
set rsastate [ACCESS::session data get "session.securid.last.state"]
if { $rsastate != "SECURID_AUTH_STATE_ACCESS_ACCEPTED" } {
ACCESS::session remove
}
}
Question: Would it be more efficient to use another event than HTTP_REQUEST?