Forum Discussion

JohnMelbs's avatar
JohnMelbs
Icon for Nimbostratus rankNimbostratus
Oct 21, 2020

F5/Azure AD specify access to Applications

HI All

 

I have users that are stored in Azure AD. We are using Azure AD for MFA. Users belong to Conditional Access Policies. How can I limit Users in Azure AD to only specific apps through F5?

 

I.e, 10 applications are exposed to users through F5, I wish certain users to have access to only certain applications.

 

This article https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/kerbf5-tutorial makes it seem like I need to do development.

 

I see an article on how to do it for roles here https://blog.azureinfra.com/2020/07/06/f5-azure-ad-role-assignments-to-header-based-apps/ Could I do the same logic work with the Applications in the Conditional Access Policies?

 

  • There are a number of ways to do this - you can put APM in front of the apps, do SAML SSO via Azure ADFS and leave it to perform the access restrictions, or you can do the checking on the APM.