Solutions

Use Regex expression for username matching in rules

Solutions ID:    KB5113
Version:    1.0
Status:    Published
Published date:    05/10/2012
 

Problem Description

You want to create a username Regex for use in policy.

Resolution

You can use a Regex for username matching in a source condition, but you can only do this if the authentication realm used is either LDAP or RADIUS, not natively with IWA. You can however configure your ActiveDirectory as an LDAP realm and then use this method.

For example you want to create a rule to allow any access to all users whose username matches the format of admin-XXXXX. In this example, ActiveDirectory has been defined as an LDAP realm using the LDAP Attribute Name sAMAccountName:

LDAP Attribute Object

You can now use this object as a source condition in your policy:

Access Layer


Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
 
 
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.
 
 

Your response will be used to improve our document content.

Ask a Question