For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

cd_312641's avatar
cd_312641
Icon for Nimbostratus rankNimbostratus
Aug 09, 2018

Portal Access / Webtop Portal Access

Hello,   I am new to APM and I find difficult to understand how Portal Access and Webtop Portal Access works.   I have setup a Portal Access profile in full patching mode, which forces me to do...
BIG-IP Access Policy Manager (APM)
LTM
security
Stanislas_Piro2's avatar
Stanislas_Piro2
Icon for Cumulonimbus rankCumulonimbus
Aug 09, 2018

The default behavior of APM is to allow requests and rewrite URLs according to rewrite profile.

 

The Portal Access resource allow you to:

 

  • create a link when using full webtop
  • configure SSO for this URL
  • configure caching
  • configure compression
  • enable / disable Layer 7 logs

When configuring APM in VPN SSL mode, I always create a ACL with order 1000

 

  • type L4
  • Source / destination : 0.0.0.0/0
  • Action : drop
  • Log : packet

and assign it to all users.

 

Then, all Portal access resources are defined with order less than 1000. If a user is not assigned this portal access resource, the connection is dropped with a Deny page.