Leverage F5 BIG-IP APM and Azure AD Conditional Access Easy button
This article tackles an integration with BIG-IP APM and Microsoft EntraID (Previously called AzureAD)
Table of Contents
Introduction
Starting with F5 BIG-IP Access Policy Manager v16.1, users are now able to select Conditional Access Policies created at Microsoft EntraID (Previously called AzureAD) and simplify this integration.
Conditional Access policies at their simplest are if-then statements, those if statements can be based on users, identities or applications.
For more details on conditions and actions at Microsoft EntraID (Previously called AzureAD), please refer to https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/overview
This article is based on a great demo created by Matt_Dierick
Configurations summary
Below is a summary of the configurations steps to follow,
1- Configure Conditional Access policiy at Microsoft EntraID (Previously called AzureAD), for more information on this part please follow the following link, https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-policies
4- This section will allow us to select the required conditional access policies created, and now you have the full policy flow managable through your BIG-IP APM dashboard.
Employee2 Comments
- Nikoolayy1
MVP
Is this only available for 16.1 or if the guided configurations are updated to latest version can this be used on 15.1 ?
- momahdy
HeyNikoolayy1 , in case you are running 15.1.3+ you can do that, here's the support matrix for the guided configurations support.
I got you some samples from before 15.1.3
Once we go beyond 15.1.3+ (below shot from 15.1.5)
So the support started with 16.1.0 and the compatibility is extended till 15.1.3+ with the latest guided configuration.
I hope that helps 🙂
