NimbostratusHi All! A lot of device Android after a system update, version 5, are unable to access at Microsoft Activesync with Gmail app.
Old android mail app, send in the uri some parameters like username and I was able to intercept the user for an LDAP query.
Now, any parameters appear, any idea?
EmployeeHi,
Android 5 works with APM for ActiveSync. I suppose you used a specific VPE. You have to put a login page in your VPE in order to gather username and password from activeSync.
NimbostratusHi Matthieu, I'm using a VPE with this flow: An iRule, when access session started, trim the domain\ and "5c" after backslash (I don't know because appear); Logon page (HTTP Basic Authentication); SSO mapping; LDAP Query; Variable (appending domain); SSO re-mapping; Allow.
My requirement is verify if an user is a member of a specific group. I can accept any solution.
Thanks.
NimbostratusHi, I'm using this rule, how I can convert that?
when ACCESS_SESSION_STARTED { log local0. " - Session started" set domain "DOMAIN\" if {([HTTP::uri] contains "DOMAIN")} { regexp "User=DOMAIN%5C([a-zA-Z0-9]+)" [HTTP::uri] all user set username $user ACCESS::session data set session.custom.username $username ACCESS::session data set session.custom.domain.and.username $domain$username log local0. " - Variables | $username | $domain$username" } }
NimbostratusHi,
I found a solution by myself:
elseif {[HTTP::header value Authorization] ne ""} {set authorization [b64decode [lindex [HTTP::header Authorization] 1]]set auth_pattern {^(?:([a-zA-Z0-9]+)(?:\\))?([a-zA-Z0-9]+):(.*)}if {[regexp $auth_pattern $authorization -> domain username password]} {}ACCESS::session data set session.custom.username $username}Good, sorry for no response this week.