Forum Discussion
Kin
Feb 17, 2020Employee
The APM machine cert auth can check for the presence of a valid cert and also the private key.
https://support.f5.com/csp/article/K12354
You can prob use a combination of restricting (domain policy again) users from opening certmgr.msc to export the cert and using a non exportable private key to address this. On exporting, the soln would leverage mostly on Windows security.