APM,LTM front ending Internet https access to Exchange and Lync

Question

I have just started the design for this project. Reading the iapp deployment guide for Exchange leads me to believe that the "approved" solution is to have APM accepting connections from users on the Internet and then directly authenticating them against AD. Our policy has always been to not allow any device that accepts connections from the Internet to authenticate those connections directly against AD, we send them thru an Oracle Directory Server (ldaps) which has a copy of the AD info pushed to it by AD. Anyone else out there have experience with this approach?

michael_koyfma1 · Answer

Mark,&nbsp;
That's what most customers choose to do - use AD - so the iApp is taylored to that scenario.  You can still use it to build out the config and then change the AD authentication part to be LDAPS instead manually - there are a number of customers that do it.&nbsp;

mark_cloutier · Answer

Makes sense Mike, thanks.  Nice to get some confirmation on my assumptions before I proceed to far down the design path.&nbsp;

Forum Discussion

APM,LTM front ending Internet https access to Exchange and Lync

2 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

Protect an application exposed on Internet with F5 XC WAAP

Exchange 2016

F5 APM VPN Choking Internet Bandwidth

Unbreaking the Internet and Converting Protocols

MS Exchange ProxyNotShell block implemented via iRules