cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

APM sessions broken out by access policy?

Fallout1984
Cirrocumulus
Cirrocumulus

I don't believe this is possible, but I'll ask just to be sure...

 

For VPN, based on their user ID or an Active Directory query, etc., a user is assigned an APM access policy appropriate for their level of access. Is it possible, beyond running a custom report via the GUI, to display/track the current number of users connected via one access policy or another?

 

I've used "tmsh show /apm license" to see how many licenses are consumed, and have also run reports via the GUI to see how many people have connected via a specific APM policy, but this is a bit beyond that. I'd think there would have to be some mechanism to tally not only connections via an APM policy, but one to update the total whenever a session terminates.

 

Thanks!

1 ACCEPTED SOLUTION

boneyard
MVP
MVP

i dont believe that is available within one easy command.

 

you do have the sessiondump command and with some scripting around that you might be able to get what you want.

 

https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-access-policy-manager-visual-policy-editor/session-variables/sessiondump-command-usage.html

 

some example output here:

https://support.f5.com/csp/article/K80934060

View solution in original post

2 REPLIES 2

boneyard
MVP
MVP

i dont believe that is available within one easy command.

 

you do have the sessiondump command and with some scripting around that you might be able to get what you want.

 

https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-access-policy-manager-visual-policy-editor/session-variables/sessiondump-command-usage.html

 

some example output here:

https://support.f5.com/csp/article/K80934060

Awesome - thanks!