How to link SSO to F5 mgmt(GUI)

Hi, I'm Seajoon-Song,

 

I have a Question.

 

I want to configure the F5 GUI (MGMT) to connect via SSO. I am currently using F5 BIG-IP v13.0, and I think the version will don't be important.

 

The setting is simple. Set Port Lockdown to Allow Default for Self IP.

 

Create an Access Policy that works with the AD server.

 

 

 

Then create a Virtual Server and set Destination IP / Port to SelfIP / 443 (HTTPS), then apply the corresponding Access Policy and Connectivity. Of course, apply SSL Profile (Client / Server).

 

 

Then, if you connect to the Self IP by https, the login page will be displayed by the first access policy. If login is successful, login screen of the device GUI (mgmt) is displayed through Port Lockdown of Self IP.

 

In this case, you have to log in two times, In the first attempt, I want to be automatically logged in to the GUI via SSO when the login is successful.

 

The reason for this is that, First, it is for linking with AD server. Second, you can get various information through AD Query, Or to provide the password change page or information page automatically after expiration of password change expiration time.

 

 

 

In F5, you can interwork with AD server by System >> Users: Authentication or interwork with AD server through Remote-APM Base.

 

But for the second reason, the function of AD Query, the password change page, password change page, and password complexity are not supported.

 

Please Help me.

 

How to link SSO to F5 mgmt(GUI)?