APM,LTM front ending Internet https access to Exchange and Lync

Question

I have just started the design for this project. Reading the iapp deployment guide for Exchange leads me to believe that the "approved" solution is to have APM accepting connections from users on the Internet and then directly authenticating them against AD. Our policy has always been to not allow any device that accepts connections from the Internet to authenticate those connections directly against AD, we send them thru an Oracle Directory Server (ldaps) which has a copy of the AD info pushed to it by AD. Anyone else out there have experience with this approach?

michael_koyfma1 · Answer

Mark,&nbsp;
That's what most customers choose to do - use AD - so the iApp is taylored to that scenario.  You can still use it to build out the config and then change the AD authentication part to be LDAPS instead manually - there are a number of customers that do it.&nbsp;

mark_cloutier · Answer

Makes sense Mike, thanks.  Nice to get some confirmation on my assumptions before I proceed to far down the design path.&nbsp;

Forum Discussion

APM,LTM front ending Internet https access to Exchange and Lync

2 Replies

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

CPU utilization of F5OS on r2600

F5OS VLAN naming length restrictions

SSL cipher

iApps with load ucs Platform-migrate on newer hardware

Raise your hand if you'll be at AppWorld 2026

Related Content

Automating F5 Licensing - without direct internet access

Equinix and F5 Distributed Cloud Services: Business Partner Application Exchanges

Exchange 2016

Protect an application exposed on Internet with F5 XC WAAP

Unbreaking the Internet and Converting Protocols

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS