Manual Chapter :
Overview: LDAP or LDAPS Proxy with WebSSH
Applies To:
Show VersionsBIG-IP APM
- 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0
Overview: LDAP or LDAPS Proxy with WebSSH
Privileged user access is implemented using ephemeral authentication. In
this example use case, ephemeral authentication is configured on Access Policy Manager (APM)
using LDAP authentication. The system is also connected to an external LDAP authentication
server. It could be used for an existing deployment that uses LDAP to authenticate users. A
sample configuration is shown here:
This deployment requires configuring the following elements:
- Ephemeral Authentication Configuration
- SSH Security Configuration
- Ephemeral Authentication Access Configuration
- WebSSH Resource
- Ephemeral LDAP Authentication Configuration
- LDAP Authentication
- Webtop
- Access policy
- Connectivity profile
- Two virtual servers; one for LDAP/LDAPS and one for Ephemeral Authentication
- SSO Configuration
Follow through the tasks to set up ephemeral authentication using LDAP with WebSSH.