101 · Question #402
APM can verify which four of the following details before granting a user access to a resource? (Choose four.)
The correct answer is A. The user's Web browser B. The user's computer D. Groups the user is a member of F. The user's username. F5 APM can inspect multiple endpoint and identity attributes as part of its access policy evaluation before allowing a user to reach a protected resource. Network-level metrics and specific low-level storage software are outside its inspection scope.
Question
APM can verify which four of the following details before granting a user access to a resource? (Choose four.)
Options
- AThe user's Web browser
- BThe user's computer
- CUser's hard drive encryption software
- DGroups the user is a member of
- EThe network speed
- FThe user's username
How the community answered
(47 responses)- A85% (40)
- C4% (2)
- E11% (5)
Why each option
F5 APM can inspect multiple endpoint and identity attributes as part of its access policy evaluation before allowing a user to reach a protected resource. Network-level metrics and specific low-level storage software are outside its inspection scope.
APM can inspect the client's web browser type and version through endpoint inspection checks, allowing policy branches based on browser compliance. This is a standard client-side check performed during the access policy flow. Combined with the other correct answers, it forms a multi-factor access control decision.
APM performs machine-level endpoint checks such as verifying a machine certificate or running antivirus/firewall status, effectively verifying the computer itself meets policy requirements.
APM endpoint inspection checks for antivirus, firewall, and patch status, but does not directly verify hard drive encryption software as a distinct inspection object in its standard policy actions.
APM integrates with LDAP, Active Directory, and RADIUS to query group membership, enabling role-based access control decisions within the access policy.
APM does not measure or evaluate network connection speed as a condition for granting or denying resource access - that falls outside its access policy inspection capabilities.
Username is the fundamental authentication credential APM collects and validates against an identity store, forming the basis of the authentication portion of the policy.
Concept tested: F5 APM endpoint and identity inspection capabilities
Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-access-policy-manager-overview.html
Topics
Community Discussion
No community discussion yet for this question.