Lab – Create an APM Policy

This lab will teach you how to create a basic APM Policy using the GUI. Estimated completion time: 20 minutes

Task - Setup Virtual Server

  1. Go to Local Traffic -> Virtual Servers -> Create
 image17

  1. Enter the following values (leave others default)

    Name: webtop_demo_vs

    Destination Address: 10.1.10.47

    Service Port: 443

    HTTP Profile: http

    SSL Profile (Client): f5demo_client_ssl

    Source Address Translation: Àutomap

 image18

Task - Create a Connectivity Profile

1. Go to Access -> Connectivity/VPN -> Profiles -> Add image19

  1. Enter the following values (leave others default)

    Name: webtop_demo_cp

    Parent Profile: /Common/connectivity

 image20

Task - Create an AD Server as AAA

1. Go to Access -> Authentication -> Active Directory -> Create image21

  1. Enter the following values (leave others default)

    Name: webtop_demo_aaa_srvr

    Domain Name: f5demo.com

    Server Connection: Direct

    Domain Controller: 10.1.20.251

    Admin Name: service_account

    Admin Password: password

 image22

Task - Create a container (webtop)

1. Go to Access -> Webtop -> Webtop Lists -> Create image23

  1. Enter the following values (leave others default)

    Name: webtop_demo_webtop

    Type: Full

 image24

Task - Create a Portal Access

1. Go to Access -> Connectivity/VPN: Portal Access List -> Create image25

  1. Enter the following values (leave others default)

    Name: portal_intranet

    Link Type: Application URI

    Application URI: http://10.1.20.32

    Caption: INTRANET

 image26

Task - Setup APM Profile

1. Go to Access -> Profiles / Policies -> Access Profiles (Per Session Policies) -> Create image27

2. Enter the following values (leave others default) then click Finished

Name: webtop_demo

Profile Type: All

Profile Scope: Profile

Languages: English

image28

image29
3. Click Edit for webtop_demo, a new browser tab will open image30
4. Click the + between Start and Deny, select Logon Page from the Logon tab, click Add Item

image31

image32

5. Enter the following values (leave others default) then click Save

Form Header Text: Secure Logon <br> for "your demo organization"
 image33
6. Click the + between Logon Page and Deny, select AD Auth from the Authentication tab, click Add Item image34
7. Change the Server to /Common/webtop_demo_aaa_srvr, then click Save image35
8. Change the AD Auth Successful branch ending to Allow, then click Save

image36

image37
9. Click the + between AD Auth and Allow, select Advanced Resource Assign from the Assigment tab, click Add Item image38

10. Click on Add new Entry, then for the new Expression, click Add/Delete. Add the following resources, and then click Update and Save

  • Portal Access: /Common/portal_intranet
  • Webtop: /Common/webtop_demo_webtop

image39

image40
11. Click Apply Access Policy in the top left and then close the browser tab image41

Task - Add the Access Policy to the Virtual Server

1. Go to Local Traffic -> Virtual Servers -> webtop__demo_vs image42
2. Modify the Rewrite Profile setting to rewrite, Access Profile to webtop_demo and Connectivity Profile to webtop_demo_cp, then click Update image43

3. Test access to https://webtop.vlab.f5demo.com (you can use the bookmark in Chrome) from the jump host, you should see a logon page.

You can login with any user:
  • sales_user
  • sales_manager
  • partner_user
  
Previous Next