Eric_Brander_27
Dec 05, 2007Nimbostratus
Active Directory (via LDAP) Authentication
I've successfully set up AD Authentication off-loading with the LTM and Client Authentication module. So now in order for a user to hit our intranet site, they will have to have a valid AD account.
But what if I want to have multiple pages with different authorization requirements? www.intranet.com would be ok for anyone to see, but only members of GRP_Accounting should be able to visit www.intranet.com/accounting.
I assume I would create multiple profiles each with its own GROUP DN setting that's apropriate, and then an iRule for each URL? Has anyone done this before or am I simply asking the F5 to do to much and should handle this sort of access control on the web server itself?
TIA,
Eric Brander