validate trusted device before vpn

Question

i'd like to figure out how i can validate that a user who is trying to use VPN can have the machine that they are coming from be validated as a trusted device before being allowed to VPN (think remote NAC). ideally, this would leverage my MDM solution (workspace one) for device trust. Can anyone tell me if there are integrations for this sort of thing between F5 and Workspace One? or other thoughts?

james_thomson · Answer

https://support.f5.com/csp/article/K86013483https://www.f5.com/pdf/partners/apm-proxy-with-workspace-one-integration-guide.pdf&nbsp;

kmort · Answer

Thanks James for your help. As I look at the link you sent though, it gives me the impression that this is for proxy use, which isn't quite what I am looking for. I am looking to manage remote devices via Workspace One, and then based on whether or not a device is managed, allow them to VPN in (via the F5). Essentially, I think I want the F5 to check with Workspace One to see if the device is authorized to use VPN. Is that possible?

curious1 · Answer

Is this what you are after?https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-client-configuration-7-1-6/6.html

Forum Discussion

validate trusted device before vpn

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Creating device trust / trust-domain through iControl REST Call(s)

POC: Validate JWT with iRule

Exploring the Zero Trust Models of AWS, Microsoft, and Google

Trust your CDN, but not completely

Overview of Trusted Client IP Headers in F5 Distributed Cloud Platform

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS