For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

bradley2100's avatar
bradley2100
Icon for Nimbostratus rankNimbostratus
Aug 11, 2018

APM Multi-Domain SSO

I have 3 access policies assigned to 3 virtual servers; login, app1 and app2. These share a common top level domain.   The first access policy for login authenticates the sesssion and assigns a we...
application delivery
BIG-IP Access Policy Manager (APM)
I_R_101_110's avatar
I_R_101_110
Icon for Cirrus rankCirrus
Aug 11, 2018

I don't know if this will work in your environment but it is possible to assign an ACL upon initial APM authentication based on an AD/LDAP group query. This ACL could say - regardless of what you gained access to via authenticating to that redirected login page - you are still only allowed access to these IP networks that were assigned based off of your group membership.