Forum Discussion
AltostratusF5 APM Google Authenticator
As far as I know there is not yet a solution available that will give you the option to enroll users that don't have a shared secret stored. Here are some links that will give you more information about the implementation that George Watkins created:
https://loadbalancing.se/2016/07/09/setting-up-apm-with-google-authenticator/
https://f5-agility-labs-iam.readthedocs.io/en/latest/class9/module5/lab1.html
There is also another implementation available that has more focus on security. See:
https://devcentral.f5.com/s/articles/apm-google-authenticator-http-api-914
zchrissHi Niels,
The top link ( https://loadbalancing.se/2016/07/09/setting-up-apm-with-google-authenticator/ ) was exactly what I was looking for. It seems to mostly follow George Watkins guide and more importantly has a copy of the irules. Thanks!
I have seen enrollment done here, and the video does make it look very polished:
https://www.youtube.com/watch?v=mFmx4TDWyD0
Again, it seems like there are no copies of the irules anywhere. Which is a shame!
Cheers,
Chris
Hi Chris,
Nice feature! The iRules for auto enrollment seem to be located here:
https://github.com/codygreen/F5-MFA
Kind regards,
--Niels
