Cirrus
MVPAnything can be faked 😉 However, it is a bit more difficult to forge SSL certificates! Additionally, you can always revoke them individually if a device is reported stolen for instance.
Here is a good start for this:
https://my.f5.com/manage/s/article/K12354
CirrusHi Whisperer,
First thanks for your reply and help.
I am also following that way to secure the access by creating a lab as follows :
----------- Server-01
Client PC ----------- Router ----------- BIG-IP-VE ----------- Router
| ----------- Server-02
|
|
Active Directory
with CA
Client PC: Windows 10
Routers : VyOS
BIG-IP: Version 17.x
Servers : Rocky Linux with Apache
Active directory : Windows Server 2022
but i could not find a good documentation about how to integrate the BIG-IP with the CA.
have you ever succeded to doit?
if so do you have any documentation to share
thanks in advance.