Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Peter_Wang_7400's avatar
Peter_Wang_7400
Icon for Nimbostratus rankNimbostratus
Jul 19, 2011

APM client side check - Registry and Windows File

My client wants to check whether a pc is a valid company SOE based on three conditions - Domain, Antivirus and SOE image version. All three checks need to be passed.     The domain and antivirus...
BIG-IP Access Policy Manager (APM)
remote access
security
Peter_Wang_7400's avatar
Peter_Wang_7400
Icon for Nimbostratus rankNimbostratus
Aug 04, 2011
This is what I have configured at the moment. I have two separate checks: one for each registry key.

 

 

\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters ."Domain"="a.abc.com" OR "\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters "."Domain"="b.abc.com" OR "\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters "."Domain"="c.abc.com"

 

 

\HKEY_LOCAL_MACHINE \SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion."Parent"= "server1" OR "\HKEY_LOCAL_MACHINE \SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion"."Parent" = "server2" OR "\HKEY_LOCAL_MACHINE \SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion"."Parent" = "server3"

 

 

However, this is not working. It says “Access was denied by the access policy. This may be due to a failure to meet access policy requirements”

 

 

The Windows file check is actually fine. I wasn't sure if APM could take the whole path in the field.

 

 

C:\Windows\System32\OEMINFO.INI

 

 

Any advice for the registry check?