For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Gavin_Connell-O's avatar
Gavin_Connell-O
Icon for Nimbostratus rankNimbostratus
Aug 04, 2014

Thanks a lot for all your help with this question Kevin. We deployed an access policy with the help of F5 professional services from Australia. The end solution relies quite a lot of an iRule to selectively enable/disable the access policy when particular URi's are quested. I've got a basic ACL definied within the irule too. Once a user succsessfully exits the access policy, their APM attribute variables are checked for authorisation purposes. It works really well, and since we had this positive experience I've been able to utilise what I've learned about kerberos SSO to leverage the same framework for three other systems successfully. Loving the APM at the moment ;)

 

If anyone has any questions on this ballpark, I'd be only to happy to help/share experiences.

 

 

Microgag_61404's avatar
Microgag_61404
Icon for Nimbostratus rankNimbostratus
Feb 04, 2015
Hi Gavin, Would you be able to share on how to configure the "Correct UPN variable" and the "LDAP Query" in detail. Also the irule that are in use. Thanks and Regards