apm sso ntlmv2
apm sso ntlmv2(1) BIG-IP TMSH Manual apm sso ntlmv2(1)
NAME
ntlmv2 - Configures a single sign-on (SSO) NT LAN Manager, version 2
(ntlmv2) configuration object.
MODULE
apm sso
SYNTAX
Configure the ntlmv2 component within the sso module using the syntax
shown in the following sections.
CREATE/MODIFY
create ntlmv2 [name]
modify ntlmv2 [name]
options:
apm-log-config [[string] | none]
app-service [[string] | none]
domain-source [session.logon.last.domain | none]
headers [add | delete | modify | replace-all-with] {
[name] {
options:
app-service [[string] | none]
hname [[string] | none]
hvalue [[integer] | none]
}
}
location-specific [true | false]
ntlm-domain [[string] | none]
password-source [session.sso.token.last.password | none]
username-conversion [enabled | disabled]
username-source [session.sso.token.last.username | none]
edit ntlmv2 [ [ [name] | [glob] | [regex] ] ... ]
options:
all-properties
non-default-properties
DISPLAY
list ntlmv2
list ntlmv2 [ [ [name] | [glob] | [regex] ] ... ]
show running-config ntlmv2
show running-config ntlmv2 [ [ [name] | [glob] |
[regex] ] ... ]
options:
all-properties
non-default-properties
one-line
partition
show ntlmv2
show ntlmv2 [name]
DELETE
delete ntlmv2 [name]
DESCRIPTION
You can use the ntlmv2 component to configure a single sign-on NT LAN
Manager, version 2 configuration object.
EXAMPLES
create ntlmv2 myntlmv2
Creates an SSO ntlmv2 configuration object named myntlmv2.
OPTIONS
apm-log-config
Specifies log-setting object to associate with this sso. If this
value is empty, logging framework uses log-setting configuration
associated with the access profile where sso is used.
app-service
Specifies the name of the application service to which the object
belongs. The default value is none. Note: If the strict-updates
option is enabled on the application service that owns the object,
you cannot modify or delete the object. Only the application
service can modify or delete the object.
domain-source
Specifies the Session variable used as a source for the single
sign-on user domain. The default is session.logon.last.domain.
headers
Specifies the name and value of the HTTP header content to be
inserted in an HTTP Request that passes through the APM SSO
module. The default is none.
The options are:
app-service
Specifies the name of the application service to which the
HTTP header belongs. The default value is none. Note: If the
strict-updates option is enabled on the application service
that owns the object, you cannot modify or delete the HTTP
header. Only the application service can modify or delete the
HTTP header.
hname
Specifies the name of the HTTP header.
hvalue
Specifies the value of the HTTP header.
location-specific
Specifies whether or not this object contains one or more
attributes with values that are specific to the location where the
BIG-IP device resides. The location-specific attribute is either
true or false. When using policy sync, mark an object as location-
specific to prevent errors that can occur when policies reference
objects, such as authentication servers, that are specific to a
certain location.
[name]
Specifies a name for the sso ntlmv2 configuration object. This
option is required.
ntlm-domain
Specifies the static domain setting. If the domain is not
retrieved successfully from the source specified in the domain-
source option, the system uses this value for the source.
password source
Specifies the source from which you want SSO to retrieve the
password to use to authenticate applications. The default is
session.sso.token.last.password.
username-conversion
Enables or disables conversion of PREWIN2k/UPN username input
format to the format you want to use for SSO. The default is
disabled.
username-source
Specifies the source from which you want SSO to retrieve the
username used to authenticate applications.
SEE ALSO
basic, form-based,kerberos, ntlmv1
COPYRIGHT
No part of this program may be reproduced or transmitted in any form or
by any means, electronic or mechanical, including photocopying,
recording, or information storage and retrieval systems, for any
purpose other than the purchaser's personal use, without the express
written permission of F5 Networks, Inc.
F5 Networks and BIG-IP (c) Copyright 2011-2012. All rights reserved.
BIG-IP 2016-03-02 apm sso ntlmv2(1)