APM Question - Remember my computer/device ?

Question

Can APM remember a device after an initial logon?&nbsp;
For example, if I login to a device using token and AD credentials, I get access to the resources behind the APM.&nbsp;
Now for the second time with the same machine, can it just go through....kind of like Google's remember my computer or does this require a second party app for risk based authentication?&nbsp;

seth_cooper · Answer

Hi,&nbsp;
You should be able to use an iRule to store a key/value pair of machine name and user name.  You would then have logic in the VPE and iRules to allow access if the machine had a corresponding username in the table.&nbsp;
I would suggest to use client certificates instead as machine names could be spoofed really easy.&nbsp;
Seth&nbsp;

jona187_168823 · Answer

Where is this tabled stored ?&nbsp;
In memory or somewhere physical?&nbsp;
I can't do machine certs, because it would be for both trusted and non trusted devices.  Can the APM provision certs to devices that pass a strong multifactor challenge&gt;?&nbsp;

seth_cooper · Answer

The table is stored in memory.&nbsp;
The APM cannot provision certs to devices.  &nbsp;
Your best bet is to use some location aware service for authentication like Toopher or one of the other mobile apps that provide this type of access.  &nbsp;
-Seth&nbsp;

jona187_168823 · Answer

Thanks Seth.&nbsp;

roman_ · Answer

hello,anyone have solution/irule for this case?

Forum Discussion

APM Question -> Remember my computer/device ?

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

Remember your first stack?

Health monitor question

Novice Question - irules

irule logging question

Overlapped Networks Question

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS