I do think there is an issue with os versions. I installed a fresh copy of 9.1.0 on one server and 9.2.2 on another. The rule I previously posted worked great on the 9.1.0 system (below are the logs [each system has its own timestamp])
9.1.0
19:42:31 Rule ldap: entering auth credential
19:42:35 Rule ldap: entering auth success
9.2.2
11:27:12 Rule ldap AUTH_WANTCREDENTIAL: entering auth want credential
11:32:12 Rule ldap AUTH_SUCCESS: entering auth success
11:32:31 Rule ldap AUTH_ERROR: entering auth error
The page still displays correctly on 9.2.2 as it did on 9.1.0.
The default auth sys ldap rule works great on both systems; however I don't like some of the side effects of sys auth ldap. I connect to the virtual server and type and invalid username and leave the password blank. It prompts me for the username and password again. I type the real username and password which does not work. I type it correctly again and the system returns a blank page. This is not the same as the rule I have posted on a 9.1.0 system. I enter an invalid username and leave the password blank. I enter the correct credentials on the second and it works. I could even wait for the third (second attempt is the real username and blank password) to make it work.
As far as the placement of the rule, I have attached the new Irule in the ldap profile (replacing the existing sys auth ldap Irule). I do not add an Irule to the virtual server under Resources/Irule. I add the ldap profile (with the new Irule) to the auth profiles in the virtual server.
I see that there is a 9.2.3 version out. How would I go about obtaining a copy?
I've done it before but can't remember how I requested it. I would be interested to see if it behaves the same way.
Thank you for your help,
Rob