Forum Discussion

Nimbostratus

Dec 14, 2021

two VS, one APM and check AD group membership

Bonjour, I can't manage to fix this request about one web application (wordpress / sharepoint) : two VS : one for wordpress, the other for sharepoint one APM for the two VS in order to avoid user...

BIG-IP Access Policy Manager (APM)

devops

spalande

Nacreous

Dec 15, 2021

Okay. got it. yes, once user is already authenticated by APM, it won't evaluate APM policy for any other URL inside the application with default apm policy. You would need to use something like per request apm policy or step up authentication to re-evaluate for that one URL. You can also try with iRule to remove APM session ACCESS::session remove and then re-evulate.

to be honest, I haven't done this personally but following doc can provide some guidanace.

https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-implementations-12-1-0/8.html

https://devcentral.f5.com/s/articles/apm-full-step-up-authentication-903

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

two VS, one APM and check AD group membership

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

Migration of complete ucs file of BIGIP 2000 LTM to r5800 creating tenant/ Using Journey APP

R4800 snmp issues.

F5 XC and Service Policy/HTTP path

BIG-IQ: how to change interval checks for health status of pools and poolmembers

Citrix iApps

Related Content

Certified Kubernetes Administrator - Study Group

Intermediate iRules: Data-Groups

Check a Virtual Server's SSL Status

Create cipher group in f5

snmp-check external monitor

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS