Forum Discussion
From what I think you should test NTLM or Kerberos authentication options https://support.f5.com/csp/article/K03010204 or https://techdocs.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-single-sign-on-11-6-0/9.html / https://support.f5.com/csp/article/K43063049 . As in this case only the domain computers will have access.
If you want you can also set edge client client to use the windows credentials but this will still allow company computers that are curently not in the domain to enter but I am just mentioning this https://support.f5.com/csp/article/K14964 as you can make also the computers to always start their VPN when booting so that the user will never be able to use the computers without VPN started as written in https://support.f5.com/csp/article/K24416258
Just a note, also after the customers log into the Edge Client and the VIP with network access they will still internally be redirected to a VIP if they try to access it and that VIP can have an access profile with Kerberos / NTLM .