Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

APM - Allow session by checking if Session Variable exist in a List/DB

Jorjjj
Nimbostratus
Nimbostratus

‎12-Feb-2020 15:09

Hello

I need to Build a use case, where I need to allow only specific Machines to access a web applications.

 

The best approach i reached to was through the APM module, where i can retrieve the Machine info, and validate the BIOS Serial number (which is unique among different machines) against a list of Allowed SN.

 

  • If the variable (

session.machine_info./Common/Test-Access_act_machine_info_ag.bios.sn) exist in list ==> Grant Access to Web app

 

  • If the variable does not existing the list ==> DROP access (And provide a way for the admin to include it to the list if it's an approved machine)

 

If this a good approach to do? or is there any other easier and practical way to authenticate a Machine before granting access?

If yes, where should i write the list of allowed BIOS SN, and how to do make Validation check (If SN exist in LIST)

 

Regards,

Georges.

Labels:
0 Kudos
1 REPLY 1

Dave_W
F5 Employee
F5 Employee

‎13-Feb-2020 14:15

Hello, where is the list of allowed BIOS numbers? In a attribute in say AD? Or in a datagroup within the BigIP?

 

https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-config-11-4-0/apm_config_cl...

0 Kudos
Copyright © 2023 Khoros, LLC