For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Menardo_134653's avatar
Menardo_134653
Icon for Nimbostratus rankNimbostratus
Nov 15, 2013

Limit SSL VPN Session

Hi,

 

I would like to ask if there is a way to limit the number of SSL VPN sessions per user via APM or LTM. The user is authenticated through a client certificate only. My problem is that one client certificate can be used to establish SSL VPN sessions from two or more different machines. Is there a way to limit this? Appreciate any input.

 

Thanks,

 

BIG-IP Access Policy Manager (APM)
design
security

2 Replies

  • Seth_Cooper's avatar
    Seth_Cooper
    Icon for Employee rankEmployee
    Nov 15, 2013

    Hi Menardo,

     

    Under Access Policy / Access Profiles / Then select the profile you want to modify.

     

    You should see an entry for "Max Sessions Per User".. this should limit your users to one session each.

     

    Let me know if this helps.

     

    Seth

     

  • Marco_Castro_11's avatar
    Marco_Castro_11
    Icon for Nimbostratus rankNimbostratus
    Apr 01, 2014

    Hi,

     

    I have just tested this feature with APM 11.4.1HF3 it seems it not working. Have you managed to put this working?

     

    Thanks. MC