What are the required steps to extend the Defender ISAPI Agent to pass the user ID to the protected web page?
This Knowledge Article outlines two methods of establishing the user identity used to authenticate to Defender, for customers who wish to customize websites protected by the Defender ISAPI Agent, based on the user identity. Both methods involve editing the logon.asp file. This file can be found in the following (default) below location and can be edited with any standard text editor.
%ProgramFiles%\One Identity\Defender\Defender ISAPI Agent\_DefenderAuth\logon.asp
Method 1: Pass the user identity as a Cookie
Find the routine named CheckAuthentication. Add the following two lines:
Response.Cookies("DefenderUser") = UserID
Response.Cookies("DefenderUser").path = "/"
Directly before the line:
Response.redirect(Request.QueryString("location"))
The protected website can then query the DefenderUser cookie to determine the user identity.
Method 2: Append the user identity to the URL
Find the routine named CheckAuthentication. Amend the line:
Response.redirect(Request.QueryString("location"))
to read:
Response.redirect(Request.QueryString("location") & "?DefenderUser=" & UserID )
The protected website can then extract the DefenderUser query string from the URL to determine the user identity.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center