Forum Discussion
Feb 03, 2022
Hello,
I wonder if you could accomplish this with a per-request policy and URL branching agent. I haven't tested this but my thought is if the system can see either the portal rewrite URL or the actual URL, you might be able to trigger the call to your MFA solution through a subroutine. Obviously I would test this in a non-production setting but its possible it could help here.
See this for more info: https://techdocs.f5.com/en-us/bigip-15-0-0/big-ip-access-policy-manager-per-request-policies/using-step-up-authentication/what-is-step-up-authentication.html