101 · Question #403
Which four of these benefits does APM provide? (Choose four.)
The correct answer is A. Enables remote access by several thousand simultaneous users. C. User authentication based on identity. E. Granular authorization to resources. F. Client workstation security checking.. APM provides identity-based authentication, granular authorization, endpoint security checking, and large-scale remote access, but does not provide WAF or content acceleration functions. Those capabilities belong to ASM and WebAccelerator/AAM respectively.
Question
Which four of these benefits does APM provide? (Choose four.)
Options
- AEnables remote access by several thousand simultaneous users.
- BBasic Web application firewall capabilities.
- CUser authentication based on identity.
- DAcceleration of Web content to the client.
- EGranular authorization to resources.
- FClient workstation security checking.
How the community answered
(42 responses)- A93% (39)
- B2% (1)
- D5% (2)
Why each option
APM provides identity-based authentication, granular authorization, endpoint security checking, and large-scale remote access, but does not provide WAF or content acceleration functions. Those capabilities belong to ASM and WebAccelerator/AAM respectively.
APM is licensed and architected to support thousands of concurrent SSL VPN and clientless remote access sessions, making large-scale remote access a primary use case.
Web application firewall capabilities are provided by F5 ASM (Application Security Manager / Advanced WAF), not APM, which has no HTTP request inspection or attack signature engine.
APM authenticates users against identity providers such as Active Directory, LDAP, RADIUS, and SAML IdPs, making identity-based authentication a core feature.
Acceleration of web content to the client is the function of F5 WebAccelerator (AAM), which uses caching and compression - APM focuses on authentication and authorization, not performance optimization.
APM's access policy engine enables granular, per-resource authorization decisions based on user identity, group membership, and endpoint posture, going well beyond simple allow/deny.
APM's endpoint inspection feature checks the client workstation for security software, OS patch level, and certificate presence before granting access, directly fulfilling client workstation security checking.
Concept tested: F5 APM core features vs. other BIG-IP modules
Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-access-policy-manager-overview.html
Topics
Community Discussion
No community discussion yet for this question.