Leverage F5 BIG-IP APM and Azure AD Conditional Access Easy button

 

Introduction

Starting with F5 BIG-IP Access Policy Manager v16.1, users are now able to select Conditional Access Policies created at Azure AD and simplify this integration.

Conditional Access policies at their simplest are if-then statements, those if statements can be based on users, identities or applications.

For more details on conditions and actions at Azure AD, please refer to https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/overview

This article is based on a great demo created by Matt_Dierick 

Configurations summary

Below is a summary of the configurations steps to follow,

1- Configure Conditional Access policiy at Azure AD, for more information on this part please follow the following link, https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/concept-conditional-access-policies

2- Use F5 BIG-IP APM guided configurations to integrate with Azure AD.

 

3- You will see the configuration item to integrate with the conditional access.

4- This section will allow us to select the required conditional access policies created, and now you have the full policy flow managable through your BIG-IP APM dashboard.