Forum Discussion

Nimbostratus

Feb 14, 2020

F5 APM check if client azure ad joined

hi, for our non company devices we would like to check if they're azure ad joined before they're allowed to setup an sslvpn connection. as far as i know there is a Registry key in a key with ...

BIG-IP Access Policy Manager (APM)

security

Kin

Employee

Feb 17, 2020

The APM machine cert auth can check for the presence of a valid cert and also the private key.

https://support.f5.com/csp/article/K12354

You can prob use a combination of restricting (domain policy again) users from opening certmgr.msc to export the cert and using a non exportable private key to address this. On exporting, the soln would leverage mostly on Windows security.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)