apm sso ntlmv2

apm sso ntlmv2(1)					BIG-IP TMSH Manual					 apm sso ntlmv2(1)

NAME
       ntlmv2 - Configures a single sign-on (SSO) NT LAN Manager, version 2 (ntlmv2) configuration object.

MODULE
       apm sso

SYNTAX
       Configure the ntlmv2 component within the sso module using the syntax shown in the following sections.

   CREATE/MODIFY
	create ntlmv2 [name]
	modify ntlmv2 [name]
	  options:
	    apm-log-config [[string] | none]
	    app-service [[string] | none]
	    domain-source [session.logon.last.domain | none]
	    headers [add | delete | modify | replace-all-with] {
	      [name] {
		options:
		  app-service [[string] | none]
		  hname [[string] | none]
		  hvalue [[integer] | none]
	       }
	    }
	    location-specific [true | false]
	    ntlm-domain [[string] | none]
	    password-source [session.sso.token.last.password | none]
	    username-conversion [enabled | disabled]
	    username-source [session.sso.token.last.username | none]

	edit ntlmv2 [ [ [name] | [glob] | [regex] ] ... ]
	  options:
	    all-properties
	    non-default-properties

   DISPLAY
	list ntlmv2
	list ntlmv2 [ [ [name] | [glob] | [regex] ] ... ]
	show running-config ntlmv2
	show running-config ntlmv2 [ [ [name] | [glob] |
				    [regex] ] ... ]
	  options:
	    all-properties
	    non-default-properties
	    one-line
	    partition

	show ntlmv2
	show ntlmv2 [name]

   DELETE
	delete ntlmv2 [name]

DESCRIPTION
       You can use the ntlmv2 component to configure a single sign-on NT LAN Manager, version 2 configuration object.

EXAMPLES
       create ntlmv2 myntlmv2
	    Creates an SSO ntlmv2 configuration object named myntlmv2.

OPTIONS
       apm-log-config
	    Specifies log-setting object to associate with this sso. If this value is empty, logging framework uses log-setting
	    configuration associated with the access profile where sso is used.

       app-service
	    Specifies the name of the application service to which the object belongs. The default value is none. Note: If the
	    strict-updates option is enabled on the application service that owns the object, you cannot modify or delete the
	    object. Only the application service can modify or delete the object.

       domain-source
	    Specifies the Session variable used as a source for the single sign-on user domain. The default is
	    session.logon.last.domain.

       headers
	    Specifies the name and value of the HTTP header content to be inserted in an HTTP Request that passes through the APM
	    SSO module. The default is none.

	    The options are:

	    app-service
		 Specifies the name of the application service to which the HTTP header belongs. The default value is none. Note:
		 If the strict-updates option is enabled on the application service that owns the object, you cannot modify or
		 delete the HTTP header. Only the application service can modify or delete the HTTP header.

	    hname
		 Specifies the name of the HTTP header.

	    hvalue
		 Specifies the value of the HTTP header.

       location-specific
	    Specifies whether or not this object contains one or more attributes with values that are specific to the location
	    where the BIG-IP device resides. The location-specific attribute is either true or false. When using policy sync, mark
	    an object as location-specific to prevent errors that can occur when policies reference objects, such as
	    authentication servers, that are specific to a certain location.

       [name]
	    Specifies a name for the sso ntlmv2 configuration object. This option is required.

       ntlm-domain
	    Specifies the static domain setting. If the domain is not retrieved successfully from the source specified in the
	    domain-source option, the system uses this value for the source.

       password source
	    Specifies the source from which you want SSO to retrieve the password to use to authenticate applications. The default
	    is session.sso.token.last.password.

       username-conversion
	    Enables or disables conversion of PREWIN2k/UPN username input format to the format you want to use for SSO. The
	    default is disabled.

       username-source
	    Specifies the source from which you want SSO to retrieve the username used to authenticate applications.

SEE ALSO
       basic, form-based,kerberos, ntlmv1

COPYRIGHT
       No part of this program may be reproduced or transmitted in any form or by any means, electronic or mechanical, including
       photocopying, recording, or information storage and retrieval systems, for any purpose other than the purchaser's personal
       use, without the express written permission of F5 Networks, Inc.

       F5 Networks and BIG-IP (c) Copyright 2011-2012. All rights reserved.

BIG-IP							    2016-03-02						 apm sso ntlmv2(1)