nerdexam
F5

101 · Question #459

The F5 Visual Policy Editor (VPE) is unique to the F5 BIG-IP APM module; no other access management tool has this capability. Select the features that the VPE provides. Select two.

The correct answer is C. Establish highly detailed policies based on customer business requirements E. Perform multiple factors of authentication. The F5 BIG-IP APM Visual Policy Editor enables administrators to build complex, multi-factor access policies through a graphical interface. Two core capabilities are policy granularity and MFA enforcement.

Section 2: F5 Solutions and Technology

Question

The F5 Visual Policy Editor (VPE) is unique to the F5 BIG-IP APM module; no other access management tool has this capability. Select the features that the VPE provides. Select two.

Options

  • ADevelop customized reports on user access
  • BCustomize landing or login pages
  • CEstablish highly detailed policies based on customer business requirements
  • DConfigure authentication server objects
  • EPerform multiple factors of authentication

How the community answered

(48 responses)
  • B
    2% (1)
  • C
    94% (45)
  • D
    4% (2)

Why each option

The F5 BIG-IP APM Visual Policy Editor enables administrators to build complex, multi-factor access policies through a graphical interface. Two core capabilities are policy granularity and MFA enforcement.

ADevelop customized reports on user access

Report generation is handled by APM's logging and reporting dashboards, not by the Visual Policy Editor itself.

BCustomize landing or login pages

Customizing login or landing pages is performed through APM's Customization tool, which is a separate interface from the VPE.

CEstablish highly detailed policies based on customer business requirementsCorrect

The VPE is specifically designed to let administrators construct highly granular access policies that reflect complex business logic, using branching decision trees with conditions such as group membership, device posture, and location - all mapped to customer requirements.

DConfigure authentication server objects

Authentication server objects such as Active Directory or RADIUS servers are configured in the APM object library under Access Policy, not within the VPE policy canvas.

EPerform multiple factors of authenticationCorrect

The VPE natively supports chaining multiple authentication factors (e.g., LDAP password followed by RSA token or client certificate) within a single policy flow, making multi-factor authentication a core built-in capability of the editor.

Concept tested: F5 BIG-IP APM Visual Policy Editor capabilities

Source: https://techdocs.f5.com/en-us/bigip-16-1-0/big-ip-access-policy-manager-visual-policy-editor.html

Topics

#Visual Policy Editor#APM#multi-factor authentication#access policy

Community Discussion

No community discussion yet for this question.

Full 101 Practice