To access APM
I believe I have to use the virtual server ip address in the web browser(and not management ip of Big IP) ?
Exact. Management IP is only for management. you can create as many virtual servers as needed to manage different authentication policies.
How the host on the internet gets ip from the lease pool?
After the user authenticate with browser or Edge Application, VPN starts. when user is connected, a virtual network adapter is created on client with IP assigned from lease pool
Do I need to create a different user under same partition for the authentication , so that end host on the internet after connecting to virtual server will get authenticated.
You can authenticate user against multiple authentication sources... AD, LDAP, or local DB.
If you want to authenticate a user with local DB, you must create one localDB instance in
Access ›› Authentication : Local User DB : Instances
then create users in
Access ›› Authentication : Local User DB : Users