Forum Discussion

senthil147_1421's avatar
senthil147_1421
Icon for Nimbostratus rankNimbostratus
Sep 23, 2014

IRULE for matching AD group

HI Team,

 

I need to match specific AD group in F5 APM network access SSL. Can you help me to achieve this requirement please.

 

Currently users who have AD and RSA token can connect to SSL VPN and access internal network but i would like to restrict access by matching specific AD group .

 

Thanks, Senthil

 

2 Replies

  • Hi, you don't need an irule for that :

     

    • in the VPE, after the AD auth, add a AD Query agent to retrieve groups information
    • the you can use an advanced resource assign box or a AD Group Resource Assign box in recent release to match group to specific resources like ACLs.