For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

e0013192_143645's avatar
e0013192_143645
Icon for Nimbostratus rankNimbostratus
Feb 08, 2018

APM AD auth resticted by client source and client OU

I have a requirement to allow internal users to access to SharePoint if they come from our internal IP addresses and they are part of a specific OU. I have a separate requirement that will allow con...
application delivery
BIG-IP Access Policy Manager (APM)
Stanislas_Piro2's avatar
Stanislas_Piro2
Icon for Cumulonimbus rankCumulonimbus
Feb 08, 2018

I hope this VPE screenshot is a POC configuration.

 

  1. there is no Authentication box, only a AD query box which doesn't check password.
  2. iRule event to check client source IP is a really bad idea. you can do it with an box in VPE (sever-side client check)
  3. if you want to block access to a virtual server based on irule, you can do it within an event before policy evaluation (HTTP_REQUEST or ACCESS_ACL_ALLOWED) without irule event requirement.