F5 APM
APM = access policy manager. It controls things like authentication into apps (AD auth, SAML sso) and allows custom settings like deploying a remote access portal, or specific internal links
Profile/Policies
-a flow of steps to check a user/client before allowing access.
Remote access
- Check the client machine is a compatible OS.
- have the user authenticate themselves via AD credentials and MFA
- grant the user their resources like: office pc, full vpn
Citrix (Pinnacle)
- Check client/machine is using a compatible browser or receiver agent
- trigger the SAML auth where F5 acts as a SP
- grant the user the citrix resources
Exchange (On-Prem)
- determine if user is using upn or samaccountname
- trigger mfa
- present their mailbox
Authentication
contains AD/LDAP auth, and Radius settings. You setup the auth and then pick it when creating a policy branch like above.
Federation
- Mainly for Citrix currently, where SAML auth is needed. F5 can act as a service provide (SP) to accept incoming connections and pass it through to the end app.
Connectivity / VPN
- everything related to remote access resources is configured here, like VPN settings, RDP icons, etc
connectivity profile: is a profile setting you apply to a virtual server, settings like compression, encryption.
network access: is the vpn settings.
app tunnel: are icons on the webtop that can create an internal tunnel into CG
vdi/rdp: are rdp icons on webtop
portal access: are hyperlinks to internal websites on the webtop
Webtops
is the main landing page once loggined the F5 remote access portal
-you can control the order of the icons, and how they are displayed