F5 Logo MyF5
Search
  1. MyF5 Home
  2. Knowledge Center
  3. BIG-IP Access Policy Manager: Visual Policy Editor
  4. Per-Request Policy Item Reference
  5. About per-request policy authentication items
  6. About LDAP Group Lookup
Manual Chapter : About LDAP Group Lookup

Applies To:

Show Versions Show Versions

BIG-IP APM

  • 15.1.10, 15.1.9, 15.1.8, 15.1.7, 15.1.6, 15.1.5, 15.1.4, 15.1.3, 15.1.2, 15.1.1, 15.1.0
Manual Chapter

About LDAP Group Lookup

An LDAP Group Lookup item compares a specified string against the
session.ldap.last.attr.memberOf
 session variable. The specified string is configurable in a branch rule. The default simple branch rule expression is
User is a member of CN=MY_GROUP, CN=USERS, CN=MY_DOMAIN
; the values
MY_GROUP
,
USERS
,
MY_DOMAIN
, must be replaced with values used in the LDAP group configuration at the user site.
An LDAP Query action is required in the access policy to populate the session variable.
Contact Support Contact Support

Have a Question?

Support and Sales >

About F5

Education

F5 Sites

Support Tasks




©2023 F5, Inc. All rights reserved.


Trademarks Policies Privacy California Privacy Do Not Sell My Personal Information