APM Policy Two Factor Authentication external and AD authentication internally

Question

Is there a way to use RSA SecureID and two factor Authentciation when people are coming in from externally, but by parsing the ip network if the network is internal use AD authentication and RSA is not needed. All with the APM Access Policy?

michael_koyfma1 · Answer

Yes, of course.  Use the IP Subnet Agent to determine and branch out authentication options based upon source IP in the Visual Policy Editor.&nbsp;

thexfactor82_91 · Answer

We've done this for our SharePoint environment by creating two Virtual Servers on the LTM. The external clients use a two factor auth policy while internal users just AD. Our internal DNS resolve the sharepoint site for clients to one IP while our external DNS Servers advertise a different IP to external clients.

tbenner_148572 · Answer

I am going to try the IP Subnet Agent first.  I thought about creating two virtual servers, but want one due to security department putting in security access rules everywhere

Forum Discussion

APM Policy Two Factor Authentication external and AD authentication internally

3 Replies

Recent Discussions

Issue on license renewal

Maximum throughput of f5 ltm

iRule cookie persistence and pool redirect

redirect not working

Access azure app service using f5 LTM

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Doing mTLS Authentication per URL

Application Programming Interface (API) Authentication types simplified

Distributed caching of authentication requests with NGINX Ingress Controller

iControl REST Authentication Token Management