Manual Chapter : Privileged user access requirements

Applies To:

Show Versions Show Versions


  • 17.1.0, 17.0.0, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0
Manual Chapter

Privileged user access requirements

Privileged user access depends upon the following:
  • Virtual servers
  • Ephemeral Authentication: Authentication Configuration
  • WebSSH Resource
  • SSH Security Configuration
  • Ephemeral Authentication: Access Configuration
  • Access Configuration associated with the virtual servers
  • If using SSO (Basic Authentication or Form-Based SSO only), the Authentication Configuration is associated with the SSO configuration
  • Access profile/policy (the access profile is associated with the virtual server serving as the Ephemeral Authentication server)
The access profile/policy typically includes the following:
  • Log on mechanism using Smartcard or other credential
  • Authentication method (for example, Active Directory, LDAP, RADIUS, Federation)
  • Advanced Resource Assign agent
  • Webtop
  • Portal Access and/or Webtop link that represents resources protected with ephemeral passwords.
The webtop is most often required. Configure Portal Access, Webtop, and Webtop link resources in the Advanced Resource Assign agent.
Additional elements may be added to the access policy and the BIG-IP system configuration according to your specific needs.