The BIG-IP® Access Policy Manager® network access feature provides secure access to corporate applications and data using a standard web browser, or the BIG-IP Edge Client®. Using network access, employees, partners, and customers can have access to corporate resources securely, from any location.
The network access feature provides users with the functionality of a traditional IPsec VPN client. Unlike IPsec, however, network access does not require any pre-installed software or configuration on the remote user's computer. It is also more robust than IPsec VPN against router and firewall incompatibilities.
Network access provides connections with the following features.
Network access implements a point-to-point network connection over SSL, which provides a secure solution that works well with firewalls and proxy servers.
Network access settings specify IP address pools, which the Access Policy Manager® then uses to assign IP addresses to a client computer's virtual network adapter. When an end user opens the address of the Access Policy Manager in a web browser, the browser starts an SSL connection to the Access Policy Manager. The user can then log in to the Access Policy Manager.
The process flow of a network access connection is depicted in this diagram.
A network access configuration requires:
Network access elements are summarized in the following diagram.
Network access elements
You can access all of the following BIG-IP® system documentation from the AskF5™ Knowledge Base located at http://support.f5.com/.
|BIG-IP® Access Policy Manager®: Application Access||This guide contains information for an administrator to configure application tunnels for secure, application-level TCP/IP connections from the client to the network.|
|BIG-IP® Access Policy Manager®: Authentication and Single-Sign On||This guide contains information to help an administrator configure APM for single sign-on and for various types of authentication, such as AAA server, SAML, certificate inspection, local user database, and so on.|
|BIG-IP® Access Policy Manager®: Customization||This guide provides information about using the APM customization tool to provide users with a personalized experience for access policy screens, and errors. An administrator can apply your organization's brand images and colors, change messages and errors for local languages, and change the layout of user pages and screens.|
|BIG-IP® Access Policy Manager®: Edge Client and Application Configuration||This guide contains information for an administrator to configure the BIG-IP® system for browser-based access with the web client as well as for access using BIG-IP Edge Client® and BIG-IP Edge Apps. It also includes information about how to configure or obtain client packages and install them for BIG-IP Edge Client for Windows, Mac, and Linux, and Edge Client command-line interface for Linux.|
|BIG-IP® Access Policy Manager®: Implementations||This guide contains implementations for synchronizing access policies across BIG-IP systems, hosting content on a BIG-IP system, maintaining OPSWAT libraries, configuring dynamic ACLs, web access management, and configuring an access policy for routing.|
|BIG-IP® Access Policy Manager®: Network Access||This guide contains information for an administrator to configure APM Network Access to provide secure access to corporate applications and data using a standard web browser.|
|BIG-IP® Access Policy Manager®: Portal Access||This guide contains information about how to configure APM Portal Access. In Portal Access, APM communicates with back-end servers, rewrites links in application web pages, and directs additional requests from clients back to APM.|
|BIG-IP® Access Policy Manager®: Secure Web Gateway Implementations||This guide contains information to help an administrator configure Secure Web Gateway (SWG) explicit or transparent forward proxy and apply URL categorization and filtering to Internet traffic from your enterprise.|
|BIG-IP® Access Policy Manager®: Third-Party Integration Implementations||This guide contains information about integrating third-party products with Access Policy Manager (APM®). It includes implementations for integration with VMware Horizon View, Oracle Access Manager, Citrix Web Interface site, and so on.|
|BIG-IP® Access Policy Manager®: Visual Policy Editor||This guide contains information about how to use the visual policy editor to configure access policies.|
|Release notes||Release notes contain information about the current software release, including a list of associated documentation, a summary of new features, enhancements, fixes, known issues, and available workarounds.|
|Solutions and Tech Notes||Solutions are responses and resolutions to known issues. Tech Notes provide additional configuration instructions and how-to information.|