nerdexam
F5

101 · Question #460

The F5 Visual Policy Editor (VPE) is unique to the F5 BIG-IP APM module; no other access management tool has this capability. Select the features that the VPE provides. Select two.

The correct answer is A. Determines antivirus patch levels D. Checks operating system patch levels. The F5 BIG-IP APM VPE includes endpoint inspection actions that can evaluate client health before granting access. Antivirus status and OS patch level checks are two supported inspection types.

Section 2: F5 Solutions and Technology

Question

The F5 Visual Policy Editor (VPE) is unique to the F5 BIG-IP APM module; no other access management tool has this capability. Select the features that the VPE provides. Select two.

Options

  • ADetermines antivirus patch levels
  • BCustomizes landing or login page
  • CProvides vulnerability scanning
  • DChecks operating system patch levels
  • EAssigns a lease pool address

How the community answered

(30 responses)
  • A
    87% (26)
  • B
    3% (1)
  • C
    3% (1)
  • E
    7% (2)

Why each option

The F5 BIG-IP APM VPE includes endpoint inspection actions that can evaluate client health before granting access. Antivirus status and OS patch level checks are two supported inspection types.

ADetermines antivirus patch levelsCorrect

The VPE includes an Antivirus Check action that queries the client endpoint to determine whether an antivirus product is installed, running, and at a required patch or definition level before allowing access.

BCustomizes landing or login page

Landing and login page customization is performed through the APM Customization editor, which is a separate tool from the VPE.

CProvides vulnerability scanning

Vulnerability scanning is not a function of the VPE; that capability requires a dedicated vulnerability scanner integrated separately into the environment.

DChecks operating system patch levelsCorrect

The VPE includes an OS Check action that evaluates the operating system version and patch level on the connecting device, enabling policy branching based on whether the OS meets a minimum security baseline.

EAssigns a lease pool address

IP lease pool address assignment is a network-layer function configured under APM Network Access resources, not within VPE policy actions.

Concept tested: F5 APM VPE endpoint inspection actions

Source: https://techdocs.f5.com/en-us/bigip-16-1-0/big-ip-access-policy-manager-visual-policy-editor.html

Topics

#Visual Policy Editor#endpoint inspection#APM#patch level checking

Community Discussion

No community discussion yet for this question.

Full 101 Practice