Forum Discussion
APM add 2 different types of RSA on the same policy
- Jun 29, 2022
Hi Brandon,
You have to configure some things for your requirement:
1. When you define the button to select the type of authentication that you want to use, you have to define the name for this variable, in my case I used login:
2. In the same page go to Branch Rules
3. give click in Add Branch Rule.
4.Set a name to the new rule and click in Change.
5.In the tab Advanced copy the nest expression
expr {[mcget {session.logon.last.login}] == "okta"}
Repeat the steps 3 to 5 to add another branch rule for
expr {[mcget {session.logon.last.login}] == "radius"}
6.click Save.
7. Now you can configure all the elements to allow authentication with radius and okta in differents flows, in my case for the lab I used AD and local DB.
Hope it´s works.
- Jun 29, 2022
If Okta path
If okta path
Radius Path
- Jun 29, 2022
This is one Auth password field but gives customer a choice of what on
Field 3 “Radio” values added to tbe Branch Rules this is the or statement is done on the Branch Rule
Branch Rules on the “Selection for Authorization” Expression are the values from Row 3
You will notice that the variable is .pw for both okta and rsa auth are the same. The radio is what chooses the path.
Okta Path
Line item is .pw
Important line item is .ad
Radius path
important item .pw
Important item is .ad
End Result
This is one Auth password field but gives customer a choice of what on
Field 3 “Radio” values added to tbe Branch Rules this is the or statement is done on the Branch Rule
Branch Rules on the “Selection for Authorization” Expression are the values from Row 3
You will notice that the variable is .pw for both okta and rsa auth are the same. The radio is what chooses the path.
Okta Path
Line item is .pw
Important line item is .ad
Radius path
important item .pw
Important item is .ad
End Result
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com