F5 BIG-IP SSL Orchestrator Training Lab > All SSL Orchestrator Lab Guides Source | Edit on
SSLO 201: Advanced Use Cases with SSL Orchestrator (Agility 2022 | 2 hours)¶
Note
Requires UDF Blueprint: "Agility 2022 - SSL Orchestrator 201"
BIG-IP 16.1 / SSL Orchestrator 9.2
As organizational requirements change, so does the need to update security polices and apply additional features to existing F5 SSL Orchestrator deployments. There is no need to fear required maintenance and regular upkeep of your security strategy. Maintenance can be performed within the SSLO Dashboard. It also provides enhanced statistical information which is needed to differentiate between normal and abnormal traffic.
After completing the modules in this lab, you will be familiar with:
Integrating authentication to facilitate user-based policy enforcement and logging on an HTTP service (web proxy)
Implementing a layered SSL Orchestrator architecture to handle more complex logic requirements
Deploy WAFaaS to protect an Existing Application in an inbound L3 topology
Expected time to complete: 2 hours
Pre-requisite: Completion of the SSL Orchestrator 101 lab is recommended prior to attending this lab.
CONTENTS
- 1. SSL Orchestrator Lab Environment
- 2. Transparent Authentication Using NTLM
- 2.1. Scenario
- 2.2. Lab Overview
- 2.3. Verify authentication is currently disabled
- 2.4. Review the Access Policy and AAA configuration
- 2.5. Enable NTLM authentication on explicit proxy topology
- 2.6. Verify that user information is being identified on the F5 SSL Orchestrator
- 2.7. Enable and test authentication offload
- 3. Internal Layered SSL Orchestrator Architecture
- 4. Web Application Firewall-as-a-Service (WAFaaS)
- 5. Conclusion
- 6. SSL Orchestrator Labs
- 7. Contributors
- 8. Revision History
- 9. Lab Guide Repository (GitHub)
