F5 Access Policy Manager Integration (APM)

Hijacking user credentials poses a risk of unauthorized access to accounts. Nowadays, providing additional security steps to solve such problems is possible with the SecTrail verification server.

In this document, you can find information about providing two-factor authentication for SecTrail and F5 APM via one-time password (SMS, E-mail, SoftOTP).

F5 Access Policy Manager (APM) Integration with SecTrail

1. In the F5 APM policy login screen, credentials are entered for initial verification.
2. Girilen kimlik bilgileriyle kullanıcı Active Directory sunucusu üzerinden doğrulanır.
3. If the verification is successful, the phone or e-mail address and user name information obtained through AD are transmitted to the SecTrail server, and the user is presented with the second login screen.
4. The SecTrail server sends the one-time password via SMS or e-mail to the address (phone, e-mail) forwarded in the request. An external SMS proxy or e-mail server is used during the sending phase. If a soft key (SoftOTP) is used, the password is generated via the SecTrail Authenticator mobile application.
5. The user enters the password in the SMS or e-mail transmitted by the SecTrail server or the one-time password generated with the SecTrail Authenticator mobile application on the second login screen.
6. Tek kullanımlık şifre F5 APM aracılığıyla SecTrail sunucusuna iletilir.
7. The SecTrail server validates the one-time password and transmits its response.
8. If the response is successful, F5 starts the session.

Mobile Application Support

If you want to use SoftOTP, you can ensure your security through the SecTrail Authenticator mobile application.

You can download the SecTrail Authenticator application to your mobile device from the Apple App Store or Google Play Store.