ACCESS::disable

Description

This command disables the access control enforcement for a particular request URI. The request is passed through access control module without any access control checks (excludes valid session check as well as policy allowed check).

Warning

When ACCESS::disable is used in HTTP_REQUEST irule event,and when the client sends MRH session cookie, the MRH session cookie is removed by the BIGIP APM and the request is forwarded to the resource (Resource can be a pool in case of LTM/ASM or secure connectivity resource for SAM case.) instead o

Syntax

ACCESS::disable

ACCESS::disable

  • Disable the access control enforcement for a particular request URI.

Note: This command is ignored if you are using clientless mode
See BIG-IP APM Operations Guide for more info on clientless mode

Examples

when HTTP_REQUEST {

       # Check the requested HTTP path
       switch -glob [string tolower [HTTP::path]] {
              "/apm_uri1*" -
              "/apm_uri2*" -
              "/apm_uri3*" {
                     # Enable APM for these paths
                     ACCESS::enable
              }
              default {
                     # Disable APM for all other paths
                     ACCESS::disable
              }
       }
}