Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
since ‎02-28-2014
‎10-30-2017
clint_nz
New Contributor

User authentication - please help - traffic script

by in Pulse Secure vADC
‎04-08-2014 10:14:PM
‎04-08-2014 10:14:PM
Please see the attachment as its not currently letting me to copy and paste into this window. My browser is not liking me today. ... View more

Re: Determine pool by LDAP lookup group membership...

by in Pulse Secure vADC
‎03-02-2014 11:24:AM
‎03-02-2014 11:24:AM
Hi, I got it working... I went to lunch and the brain had a break, then it all came together. Script is a bit rough, but it does what I want which is just a test at this point. The reason it didn't seem to be working was because the script wasn't preceded by the below 2 lines, which meant the user never got to the login screen. $user = ''; $pass = ''; $auth = auth.query( "AD", $user, $pass ); if( $auth['Error'] ) {    log.error(       "Error with authenticator 'ldap': " .       $auth['Error']    );    connection.discard(); } else if( !$auth['OK'] ) {    # Unauthorised    log.error(    "403 Permission Denied" .    $auth['Error']    ); } # Allow through members of the 'SITE' group using # the 'group' attribute returned by the authenticator if( $auth['group'] != "SITE_A" ) {    pool.use( "POOL A" ); } if( $auth['group'] != "SITE_B" ) {    pool.use( "POOL B" ); } ... View more

Determine pool by LDAP lookup group membership...a...

by in Pulse Secure vADC
‎03-01-2014 03:00:PM
‎03-01-2014 03:00:PM
Hi, First time using a Stingray and I need some help with the TrafficScript/Authenticator to determine the pool to send a user to. Have 2 Stingrays in a cluster. Pool A is a group of VMware View Security servers at Site A. This is the default pool. Pool B is a group of VMware View Security servers at Site B. When a user logs in I need to do a LDAP lookup into Active Directory and determine if they are a member of "SiteA" or "SiteB" group. I have the STM authenticator setup to point to a domain controller on port 389, with an account that has rights to read all user properties. Currently any user who is entitled to servers at Site A can log in via Pool A, which indicates the basic load balancing etc setup is working. When I tried implementing the TrafficScript and Authenticator to send a user to Pool A or Pool B based on AD group membership it has no affect and the user still ends up connecting to Pool A. When I look at the Authenticator tab in the STM, it says that no rules are using my authenticator called "AD", even though it is referenced in my script via $authenticator = "AD"; All I want to do is look up the group membership of a user and determine if they are members of SITEA or SITEB and send to Pool A or Pool B based on the group their in. Can someone please shed some light on my problem. Regards Clint ... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.