For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

vmwaretrain_137's avatar
vmwaretrain_137
Icon for Nimbostratus rankNimbostratus
Apr 23, 2014

APM and Remiediation

My organisation is planning to use f5 for posture checking end points to confirm the device is managed. What checks are most common and the best ones to use?   Also when a posture check fails suc...
BIG-IP Access Policy Manager (APM)
security
James_Thomson's avatar
James_Thomson
Icon for Employee rankEmployee
Apr 29, 2014

In my experience, the most common posture checks to start out with are OS version, Antivirus running (any or a specific "corporate approved one"), age of AV database, ensure Firewall process is running.

 

Depending on the specific failure, you can provide different error messages for end users and not allow them in, or I've seen many allow them in, but only provide them access to a portal access website which exists within the organization and shows them how to remediate themselves. Another option is to redirect to an external website that is set up with remediation assistance.

 

Those things can all be configured through the Access Policy as fallback events to a check.