How to configure domain drop-down as the first factor for AAA vserver without nFactor flow.
Article ID: CTX463908
Updated On:
Description
This article discribe how to configure domain drop-down as the first factor for nFactor auth without nFactor visualizer.
The User experience after applied below configuraiton will be like
- Fist authentication web page
- After authentication passed, there may prompt second authentication web page automatically depending if your next factor settings.
Instructions
(1) Customize domain drop-down login schema:
Create a new login schema based on "DomainDropdown":
Notice that there is an issue with "Edit" function on GUI for login schema. Please check xml file for DomainDropdown_new under path "/flash/nsconfig/loginschema"
Locate to "domaindropdown_new_nsi-test.com</Display><Value>NSI-TEST.COM" and change "NSI-TEST.COM" to domain you want to display.
Same operation for AAATM.COM.
Create Login Schema Policy:
(2) Add login schema for AAA vserver:
(3) Add authentication Policy:
Expression for policy is:
http.REQ.BODY(500).AFTER_STR("domain=").CONTAINS("<your domain>")
If you have second factor, please add it as Next factor:
Issue/Introduction
This article discribe how to configure domain drop-down as the first factor for nFactor auth without nFactor visu.
Additional Information
Starting from Citrix ADC release 13.0 build 36.27, nFactor configuration through the GUI is simplified by using the nFactor Visualizer(nFactor Visualizer )
You may Using nFactor Visualizer configuration referring below links:
https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/configure-domain-drop-down-username-and-password.html
You may Using nFactor Visualizer configuration referring below links:
https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/configure-domain-drop-down-username-and-password.html
Was this article helpful?
Yes
No
Powered by
