APM - Allow session by checking if Session Variable exist in a List/DB

Question

HelloI need to Build a use case, where I need to allow only specific Machines to access a web applications.&nbsp;The best approach i reached to was through the APM module, where i can retrieve the Machine info, and validate the BIOS Serial number (which is unique among different machines) against a list of Allowed SN. &nbsp;If the variable (session.machine_info./Common/Test-Access_act_machine_info_ag.bios.sn) exist in list ==&gt; Grant Access to Web app&nbsp;If the variable does not existing the list ==&gt; DROP access (And provide a way for the admin to include it to the list if it's an approved machine)&nbsp;If this a good approach to do? or is there any other easier and practical way to authenticate a Machine before granting access?If yes, where should i write the list of allowed BIOS SN, and how to do make Validation check (If SN exist in LIST)&nbsp;Regards, Georges.

dave_w · Answer

Hello, where is the list of allowed BIOS numbers? In a attribute in say AD? Or in a datagroup within the BigIP?

https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-config-11-4-0/apm_config_client_checks.html#205703

Forum Discussion

APM - Allow session by checking if Session Variable exist in a List/DB

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

BIG-IP security hardening and compliance checks

APM Session Variable Logging

APM variable assign examples

MCP Session Affinity With F5 NGINX Plus

Getting Started with iRules: Variables

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS