Forum Discussion

Cirrus

Sep 28, 2018

2 factor authentication with different timeouts

I have some APM policy working with one and two factor authentication. But now we need to have a two factor authentication with different timeouts for the second factor. Example: Client connect in t...

2 factor authentication

2-factor

apm irule

BIG-IP

BIG-IP Access Policy Manager (APM)

idle timeout

security

Leonardo_Accor1

Nimbostratus

Oct 01, 2018

Hi NetSnoopy, I think that is easier if you use a per-request policy. Let me explain. You set a 2 factor auth policy with a 1 day max session timeout. Join this policy to your VS. Create a PerRequest policy with a single factor auth (AD) with a smaller Sucsession timeout (2 hour). In this way you can obtain your goal without need of cookies.

regards

Leonardo

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

2 factor authentication with different timeouts

Recent Discussions

Should config via cli rather than gui?

Management IP F5 cant be accessed

ASD

Big-IP VE edition for MacBook M4 Chip

301 redirect and waf policy log problem

Related Content

Application Programming Interface (API) Authentication types simplified

Reduce Login Friction with F5 Distributed Cloud Authentication Intelligence

Copper SFP Differences

AD Authentication and Local DB Authentication in APM

APM Sharepoint authentication

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS