A key element to F5 BIG-IP Access Policy Manager (APM) wide range of use cases has always been the ease of integration with other technology partners. Not only BIG-IP APM own capabilities but extending other technologies capabilities to make a more robust and flexible uses cases.
This ease of integration and flexibility make it easy for organizations to make the best out of their security investments.
Below are some of the integration examples to get an idea:
ADFS Proxy Replacement on F5 BIG-IP , F5 can act as a ADFS proxy to proxy and authenticate users as a replacement for the WAP component of the ADFS.
F5 LTM can be used to load balance only traffic to ADFS environment.
BIG-IP APM with Kerberos for authentication and Single Sign-On.
Some common use case is using F5 APM to simplify migration between different deployment models,
BIG-IP APM can front ADFS and hence decouple both sides of the flow, the client traffic to BIG-IP APM and traffic towards ADFS.
Once we have the traffic decoupled, we can further migrate the ADFS to AzureAD.
BIG-IP APM SSO helps with utilizing modern authentication and federation technologies at client side, and back end can still integrate with legacy SSO technologies.
BIG-IP APM helps if the application is not yet ready for advacned and cloud identity integrations, so F5 client side integrate with the modern identity services, and backend can be developed on a different pace.
