Forum Discussion
NimbostratusIs it possible to have BIG IP APM portal access to check computer membership
I have an BIG IP APM with VPN portal access. Portal access profile is configured to check that the user is member of an AD group. Is it possible to also have the policy to check if computer is a domain computer? AD domain computers?
4 Replies
kj07208_118528Cirrus
There's a couple of options for this try to get NTLM set up (there are couple of links on devcentral to do this). By doing this it will allow you to see if the user that's hitting F5 APM is on a domain join machine because it will be sending an NTLM token on behalf of the user. The other option is inspecting the IP of the incoming request (this is limited through especially if you allow other devices on the network). Install machine certificates (a lot of work with this one).
I was looking for the same thing but nothing panned out for me.
- Striker_79_1498
Is there an option to check if the computer is in AD OU group? Like when checking if user is member of group?
Sebastian_ManiaIs there an option to check if the computer is in AD OU group? Like when checking if user is member of group?
Did anyone figure this one out? I would like to know if its possible to check the domain of the pc before a logon page.
