Description:

We are currently trying to use a web accelerator provider using dedicated appliances/infrastructure.

The processus to use this service is:

• First the user authenticate him without the accelerator service, thus the request contains the client Ip Adress which is in the cookie siteminder (SMSESSION).
  
  
• After authentication, the flux is redirected throught the accelerator service and the Ip adress for the request changes.

Thus the transientIpChecking in basic use is not possible.

We want to try to provide the IpSource in an http header. Do you know if ipchecking could be possible comparing the Ip Adress contained in the smsession cookie and the IpAdress provided in the header?

Otherwise, could you provide us the best solution to implement?

Solution:

This is possible using the CustomIPHeader setting.
Please review the section titled "How Custom Headers validate IP Addresses" in Web Agent Configuration Guide.