Forum Discussion
laser
Altostratus
AltostratusF5 Access Guard Deprecated: ZTA APM
Since F5 Access Guard is deprecated and not supported on Win 11, newer browsers, and some versions of MacOS, what is the replacement for posture checking when implementing a ZeroTrust architecture using APM as an identify aware proxy?
One major point of ZT is to do continuous posture checking of a client and the requests they are making--each and every one utilizing a per-request policiy. Without this component, it seems like APM is not a great candidate for use.
What are others doing when using APM within their ZT network? Are they using 3rd part solutions with an HTTP connector to evaluate to client/request for each and every request?
- momahdy
Employee
Hi Laser,
I'm working as PME for Access security, and would like to answer the raised queries, I believe the answer can be summarized in the below points,- F5 continues to develop in ZTNA as highlighted here, https://www.f5.com/solutions/use-cases/control-app-access-with-zero-trust , currently HTTP connector can be used to fetch status and apply this to the user traffic on per-request basis.
- For customers using Microsoft Entra ID and Intune, F5 integrates and extends compliance and endpoint checks to network and apps. The enforcement is applied per-identity based on feeds from Microsoft Intune / Entra ID.
- Stay tuned for Next Access and features support releases.
I hope I answered your raised points.
