Manual Chapter :
Creating a virtual server for Ephemeral Authentication
Applies To:
Show Versions
BIG-IP APM
- 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0
Creating a virtual server for Ephemeral Authentication
Before you begin, you need to have created the
Ephemeral Access Configuration that you want to associate with a virtual server for
privileged user access as well as an access policy, and a connectivity profile.
This task describes how to create the virtual
server that acts as the Ephemeral Authentication server and which includes the access
profile/policy containing the AAA agent to authenticate the end user and the webtop
resources for ephemeral authentication.
- On the Main tab, click .The Virtual Server List screen opens.
- ClickCreate.The New Virtual Server screen opens.
- In theNamefield, type a unique name for the virtual server, such aspua_webtop.
- For theDestination Address/Masksetting, confirm that theHostbutton is selected, and type the IP address in CIDR format (address/prefix).The various virtual servers being used for ephemeral authentication (LDAP, LDAPS, and/or RADIUS) can all have the same Destination Address as long as they use different service ports.
- In theService Portfield, selectHTTPS, port443.
- ForProtocol Profile (Client), selecttcp.
- ForHTTP Profile (Client), selecthttp.
- ForSSL Profile (Client), select a client profile, such asclientssl.
- ForSource Address Translation, selectAuto Map.
- ForRewrite Profile, selectrewrite-portal.
- In the Access Policy section, select theAccess Profile, and then theConnectivity Profileyou created.
- In the Ephemeral Authentication section, forAccess Configuration, select the Access Configuration you created.
- ClickFinished.
The virtual server is set up for ephemeral
authentication.
