Domain logon slow when using "Allow-only-in-enterprise-lan"

Question

Hi all,&nbsp;
One of our customers is using the "Allow-only-in-enterprise-lan" option in his BIG-IP Edge Client configuration.&nbsp;
When the user is connected to the enterprise LAN and performs a Windows Domain logon, it takes a long time. Almost 2 minutes and this is not acceptable. Because no traffic is allowed, the Domain Controllers cannot be reach until the BIG-IP Edge Client discovers it is on the enterprise LAN.&nbsp;
In version 13.0 of the BIG-IP software, it is possible to configure a Exclusion List on the BIG-IP Edge Client configuration in which you can add IP-addresses for the Domain Controllers and other systems which must be reachable right away. This speeds up the Domain Logon proces.&nbsp;
But our customer is at 12.1.2 Build 0.0.249. Customer is not very keen on upgrading his production environment to versie 13.0 just for this feature.&nbsp;
Is there a work around in version 12.1.2? Maybe a file on the system in which you can configure some kind of Exclusion List? Or will this feature be available in a future versions of 12.1? Or is the only option to upgrade to version 13.0? &nbsp;
Martijn.&nbsp;

kunjan · Answer

This exclusion feature only available in v13.0 and won't be available to older versions. Guess there is no work around.&nbsp;

Forum Discussion

Domain logon slow when using "Allow-only-in-enterprise-lan"

1 Reply

Recent Discussions

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Enriching AFM with public domain Threat Intelligence

domain blocking

Change cookie domain in HTTP::respond

modified domain cookies

add /browerWeb Extension after domain name