Loadbalance based on the user AD group

Question

we do loadbalance on AD servers, but also we need to direct the traffic dome users to specific AD server based on the AD group.
any idea how can we deploy it, &nbsp;
Thanks In Advance&nbsp;

rao_88575 · Answer

Do you have APM license? This can be done with APM's AD group membership query.&nbsp;

refra_151287 · Answer

No, just LTM, can it be done by iRule?
from packet capture i can see that the field we should monitor is (ldap.baseObject == "DC=example,DC=com")
is that right?

rao_88575 · Answer

It should be possible if the payload contains the group attribute. Here is the example with payload scan to get you started : https://devcentral.f5.com/s/articles/ldap-proxy

Forum Discussion

Loadbalance based on the user AD group

3 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Certified Kubernetes Administrator - Study Group

Group based authorization + OAuth 2.0 client setup with APM

GTM synchronization group

ha group

iRule based RADIUS Client Stack