Big IP LTM - first authenticate against Radius, then with a local account of last resort

Hi Leo,

I believe you are talking about remote authentication to the BigIP? If so, Please check out this manual entry https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip-user-account-administration-11-6-0/5.html.

After configuring the BigIP for remote authentication the only two accounts that remain local should be root and admin. If you see accounts listed those are considered stub accounts and will just determine what properties and permission the user has when the login.

I'm not aware of any type of "fallback" authentication... the document for Firepass is for auth to the VPN as a user not as an administrator.

-Seth