Application Delivery Management
Application Modernization & Connectivity
IT Operations Management
CyberRes
<filter>
<filter-name>o365stsfilter</filter-name>
<display-name>NIDP O365 STS Filter</display-name>
<description> ACL implementation for O365 NIDP STS</description>
<filter-class>com.netiq.custom.filter.O365STSFilter</filter-class>
<init-param>
<param-name>ALLOWED_APPS</param-name>
<param-value>Microsoft.Exchange.Autodiscover,Microsoft.Exchange.ActiveSync</param-value>
</init-param>
<init-param>
<param-name>ALLOWED_CLIENT_IPS</param-name>
<param-value>\b137\.65\.231\.141\b</param-value>
</init-param>
<init-param>
<param-name>ALLOWED_CLIENT_USER_AGENTS</param-name>
<param-value>iPhone</param-value>
</init-param>
<init-param>
<param-name>DEBUG</param-name>
<param-value>true</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>o365stsfilter</filter-name>
<url-pattern>/wstrust/sts/active12</url-pattern>
</filter-mapping>
<init-param>
<param-name>ALLOWED_APPS</param-name>
<param-value>Microsoft.Exchange.Autodiscover,Microsoft.Exchange.ActiveSync</param-value>
</init-param>
<init-param>
<param-name>ALLOWED_CLIENT_IPS</param-name>
<param-value>\b137\.65\.31\.41\b,\b174\.54\.13\.40\b</param-value>
</init-param>
<init-param>
<param-name>ALLOWED_CLIENT_USER_AGENTS</param-name>
<param-value>iPhone</param-value>
</init-param>
<init-param>
<param-name>DEBUG</param-name>
<param-value>true</param-value>
</init-param>
Before finalize the result for x-ms-client-application- true
Result is not negated !! - true
clientIP: 174.52.31.20
Iterate IP_REGEX value: \b137\.65\.31\.41\b
Iterate IP_REGEX value: \b174\.54\.13\.40\b
Before finalize the result for x-ms-forwarded-client-ip - false
Result is not negated !! - false
requested path denied - https://www.idp.com/nidp/wstrust/sts/active12
Before finalize the result for x-ms-client-application- true
Result is not negated !! – true