APM
64 TopicsAPM local DB "passwd_expire" usage
Hello, I would like to know how to use the passwd_expire value from the values displayed when entering the ldbutil --list command. Can I force users to change their passwords periodically by adjusting passwd_expire based on the last_modified value? Any Help is appreciate.40Views0likes2CommentsAfter upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs
After upgrading from PeopleTools 8.59.09 to 8.61.11 F5 APM is not rewriting all the internal urls for PeopleSoft Portal Application that also has Home page tiles from HRMS 9.2. Clicking on these tiles takes us to Internal URL instead of F5 externally resolvable url. How to troubleshoot this. I have a case opened with F5 support, but interested in any one else using F5 APM for peoplesoft and seeing similar error.30Views0likes0CommentsAPM Webtop SSL-VPN pop up customization
Hello all, I want to customize the pop up window used for webtop SSL-VPN and cannot found how. I am able to customize Webtop, Login & Logout page. Edge client too. But I found nothing about this pop up. I am using modern policy but this seems to use somehow the classic one as it has those diagonal stripes image background in header. Any ideas?55Views1like2CommentsAPM Hosted files maximum size.
Hello, I am creating an APM webtop with links to hosted content. I wanted to upload more than 1 GB of files to the hosted conent folder but i am unable to. I read an article saying that the maximum size of hosted conent is 1GB: Max Hosted Files size variable I am wondering if there is a way of extending this size? Or maybe some workaround? One thing i was considering is a simple link to some publicly available share with these files so they won't have to be hosted on bigip. However i would like to controll the access to the for authenticated users in APM. Do you have a way to achieve this? Regards Asura52Views0likes2CommentsHorizon View iApp - Big-IP 17.5
I have a client deploying an r4650 pair. The plan is for it to handle Exchange, LDAPS & Horizon View. I’m in the process of initial setup on the pair of boxes now. It’s been a long time since I've deployed Horizon View on F5. I see that the iApp is still maintained so yay! Question: is the current 1.5.9 version of the iApp supported in Big-IP 17.5? The KB article states 17.1 but the article hasn’t been updated in a while. F5 recommends the latest version of 17.5 but I don't want to hit any snags as we deploy. Thanks in advance, Matt134Views0likes2CommentsAPM Access Policy|SSLVPN | SAML auth questionnaires
Hello All, I had a conversation wiht tech team, they asking about APM login auth via SAML. We are deploying SSLVPN and we have specific EPS checks and MFA. I have confirmed that in such approach we can't auth login via SAML, as it is at the end a web based auth for a web services. Our deployment is based on edge client and we have a security posture to append. I'm totally aware of such point, however we are in brainstorm mode here for such discussion any expert had any update or idea here ? It was long time no see, and I'm glad to return back delivering for the community. Thank you.Solved95Views1like3CommentsAPM URL Branching tolower
Hello Folks, Situation is: I've a Per-Request-Policy with URL Branching for specific URL to activate a 2 FA. -> this is working. Problem: URL Branching is only working with a exact matching URI's => case sensitive e.g. URL Branch: /path/path123 -> incoming request -> /path/path123/ -> 2FA working -> incoming request -> /path/Path123/ -> 2FA is bypassed Is there any possibility in APM to change all incoming requests to lower case with an in-build-function (only for URL Branch checking)? Current workaround would be an iRule to convert all URI's to lower case. I have no idea whether this is always a good idea (maybe the backend can't handle case - insensitive paths). Thanks a lot. R.Solved71Views0likes2CommentsPKI PIN works for users from one network, not the other.
We have external users and internal users accessing a virtual server. It's fronted by an APM policy, that asks for the DoD PKI/pin, does an OCSP check, LDAP check, and then sends users on their way to LTM. (there's no SSO, or anything involved) When being load balanced to the application, the end application prompts the users for their PKI/PIN at the app again for access. For the internal network users, this works. For the external network users, their PIN is not being accepted. Is there something I'm missing on the F5 side of things? I even disabled APM for that FQDN through the VS and it still has the same result.45Views0likes2Comments