F5 BIG-IP Access Policy Manager (APM) Review Insights

Score8.9 out of 10

23 Reviews and Ratings

Back to Reviews

Insights from F5 BIG-IP Access Policy Manager (APM) Reviewers

Based on 8 verified reviews published in the last 18 months

What positive or negative impact (i.e. Return on Investment or ROI) has F5 BIG-IP Access Policy Manager (APM) had on your overall business objectives?

8 answered

F5 BIG-IP Access Policy Manager (APM) demonstrates a positive impact on business objectives, primarily by serving as a central and effective solution for Multi-Factor Authentication (MFA) and Single Sign-On (SSO). This capability was highlighted by four of eight reviewers, who noted its significant role in enhancing security and streamlining access management. The system's robust support for MFA has positioned it as a trusted "landing spot" for authentication in several environments, contributing to a stronger security posture. Furthermore, its SSO functionality is valued for improving user experience for various stakeholders, including students and staff, by simplifying login processes. The ability of APM to integrate diverse identity provider components further reinforces its utility, suggesting a positive return on investment through consolidated security infrastructure, reduced administrative complexity, and increased user productivity. These features collectively contribute to operational efficiency and bolster trust in the overall access management framework.

MFA and SSO support

4 mentions

Reviewers consistently praised F5 BIG-IP APM for its strong capabilities in Multi-Factor Authentication (MFA) and Singl…

Reviewers consistently praised F5 BIG-IP APM for its strong capabilities in Multi-Factor Authentication (MFA) and Single Sign-On (SSO), with four of eight reviewers specifically mentioning these benefits. The system is seen as a central and trusted platform for MFA, enhancing the security posture of organizations by consolidating authentication processes. Its SSO functionality significantly improves the user experience for various groups, including students and staff, by simplifying access to multiple applications and integrating seamlessly with existing identity provider components.

Besides F5 BIG-IP Access Policy Manager (APM), what other software do you regularly use? How likely would you be to recommend it to a friend or colleague?

8 answered

Reviewers frequently integrate other software solutions alongside F5 BIG-IP Access Policy Manager (APM) within their operational environments. A notable finding is that 4 of 8 reviewers explicitly mention using F5 BIG-IP Local Traffic Manager (LTM) in conjunction with APM, suggesting a common and complementary pairing within the F5 ecosystem. This indicates that LTM is often considered an essential component for managing local traffic when APM is deployed. Additionally, 4 of 8 reviewers also cited a diverse array of other third-party software, spanning various functional areas. These external tools include solutions for network performance monitoring, software development, contract management, and cloud infrastructure, illustrating the broad technological landscape in which F5 BIG-IP APM operates. The integration of these varied systems underscores the need for robust interoperability and highlights the complex IT environments managed by these users.

F5 BIG-IP LTM

4 mentions

A significant portion of reviewers, 4 of 8, indicated that they regularly use F5 BIG-IP Local Traffic Manager (LTM) in…

A significant portion of reviewers, 4 of 8, indicated that they regularly use F5 BIG-IP Local Traffic Manager (LTM) in conjunction with APM. This suggests that LTM is often viewed as a complementary and integral component within the broader F5 BIG-IP platform, essential for managing network traffic alongside access policies.

Other Software Usage

4 mentions

Beyond F5's own offerings, 4 of 8 reviewers reported using a wide variety of other software solutions. These tools enco…

Beyond F5's own offerings, 4 of 8 reviewers reported using a wide variety of other software solutions. These tools encompass diverse functions such as network analysis, development operations, contract management, and cloud services, demonstrating the complex and multi-vendor environments in which F5 BIG-IP APM is deployed.

Describe how you use F5 BIG-IP Access Policy Manager (APM) in your organization. What are the business problems the product addresses and what is the scope of your use case?

8 answered

F5 BIG-IP Access Policy Manager (APM) is primarily utilized by organizations to establish secure access to applications and to implement robust authentication mechanisms. A significant portion of reviewers, 50% (4 of 8), highlighted its role in protecting applications, particularly when exposed to the internet or for enabling remote work scenarios. The platform facilitated secure transitions to work-from-home environments for IT workforces and provided secure access to internal virtual desktop infrastructure. Beyond secure connectivity, 38% of reviewers (3 of 8) emphasized APM's capabilities in authentication, including meeting multi-factor authentication (MFA) requirements and integrating with various identity providers. This includes support for PKI certificates, RSA, LDAP, and single sign-on (SSO) solutions like SAML and OIDC, addressing the challenge of seamless access across numerous internal and third-party applications for large user bases.

Secure Application Access

4 mentions

Reviewers frequently leverage F5 BIG-IP APM to establish secure access pathways for critical applications. Half of the…

Reviewers frequently leverage F5 BIG-IP APM to establish secure access pathways for critical applications. Half of the reviewers (4 of 8) specifically noted its effectiveness in safeguarding applications before exposing them to the internet and in providing secure remote access, such as for Virtual Desktop Infrastructure (VDI). The platform was instrumental in enabling a secure transition to remote work, allowing organizations to maintain connectivity and provide proper access for their workforce during the COVID-19 pandemic.

Authentication and MFA

3 mentions

A notable use case for F5 BIG-IP APM involves its comprehensive authentication and multi-factor authentication (MFA) ca…

A notable use case for F5 BIG-IP APM involves its comprehensive authentication and multi-factor authentication (MFA) capabilities. Three out of eight reviewers (38%) highlighted its ability to integrate with various authentication methods, including PKI certificates, RSA, and LDAP, to verify user identities. Furthermore, the product serves as a robust solution for single sign-on (SSO) across a multitude of applications, supporting protocols like SAML and OIDC to streamline access for thousands of students, faculty, and staff.

Please provide some detailed examples of areas where F5 BIG-IP Access Policy Manager (APM) has room for improvement.

8 answered

Reviewers identified several areas where F5 BIG-IP Access Policy Manager (APM) could be enhanced, primarily focusing on user experience, advanced configurations, and specific security functionalities. Half of the reviewers (4 of 8) pointed to challenges with the user interface and configuration management processes. This includes the UI being cumbersome and difficulties in replicating configurations and reusing policy objects. Beyond general usability, three reviewers noted that advanced configuration options, particularly for OAuth and API protection, could be more robust and user-friendly. Specific concerns included the need for better API protection and improved training materials. Additionally, two reviewers raised issues with certain security features, such as JWT token processing, and suggested the integration of a zero-trust VPN to enhance outbound connection scrutiny. These observations collectively suggest opportunities for F5 BIG-IP APM to refine its interface, streamline complex setups, and bolster specific security mechanisms.

UI and Configuration Management

4 mentions

Half of the reviewers (4 of 8) indicated challenges with the user interface and the process of managing configurations…

Half of the reviewers (4 of 8) indicated challenges with the user interface and the process of managing configurations within F5 BIG-IP APM. Specific pain points include the UI being described as cumbersome, and the time-consuming nature of replicating configurations to other F5 clusters. Reviewers also expressed a desire for an easier way to copy objects between policies, as they frequently find themselves recreating elements.

Advanced Configuration Options

3 mentions

Three reviewers expressed a need for improvement in advanced configuration capabilities, particularly concerning OAuth…

Three reviewers expressed a need for improvement in advanced configuration capabilities, particularly concerning OAuth and API protection. Reviewers suggested that advanced OAuth configurations could be more fleshed out and easier to approach. Issues were also reported with the automatic scheduler for synchronization with a service provider for API protection, alongside a call for better training materials in this area.

Security Features

2 mentions

Two reviewers highlighted specific areas for enhancement within the security features offered by F5 BIG-IP APM. One rev…

Two reviewers highlighted specific areas for enhancement within the security features offered by F5 BIG-IP APM. One reviewer noted issues with JWT token processing, indicating a potential instability or failure point. Another reviewer suggested the need for a zero-trust VPN capability to ensure all outbound connections to external sources are thoroughly examined.

User Interface Design

2 mentions

The user interface design was a point of concern for two reviewers, who generally described it as needing improvement.…

The user interface design was a point of concern for two reviewers, who generally described it as needing improvement. One reviewer specifically mentioned the desire for a better way to view and showcase webpage design and layout within the BIG-IP platform for F5 BIG-IP Access Policy Manager. This suggests a need for more intuitive visual management of web assets.

Please provide some detailed examples of things that F5 BIG-IP Access Policy Manager (APM) does particularly well.

8 answered

F5 BIG-IP Access Policy Manager (APM) is primarily recognized by reviewers for its robust capabilities in policy management and authentication. A majority of reviewers, 5 out of 8, highlighted the ease and clarity of its policy editor and configuration processes. This is often attributed to the Visual Policy Editor (VPE), which streamlines the approach to building and modifying policies. Beyond policy creation, the platform's strong support for various authentication methods and federation features also received significant positive attention, with half of the reviewers (4 out of 8) specifically noting its utility in integrating diverse authentication systems, including modern standards like OAuth and SAML. Furthermore, 3 out of 8 reviewers appreciated the product's high degree of customization and flexibility, allowing for granular control over access policies. These aspects collectively suggest that APM excels in providing a powerful yet manageable solution for access control.

Policy Editor and Configuration

5 mentions

Reviewers frequently commend the F5 BIG-IP APM for its intuitive and straightforward policy editor, particularly highli…

Reviewers frequently commend the F5 BIG-IP APM for its intuitive and straightforward policy editor, particularly highlighting the Visual Policy Editor (VPE). This visual interface is noted for simplifying the process of building and modifying access policies, making configuration items easy to manage and reference. Five out of eight reviewers specifically praised the ease of configuration and the clean, thought-out approach it provides for workflow adjustments.

Authentication and Federation

4 mentions

A significant strength of F5 BIG-IP APM, noted by 4 out of 8 reviewers, lies in its comprehensive authentication and fe…

A significant strength of F5 BIG-IP APM, noted by 4 out of 8 reviewers, lies in its comprehensive authentication and federation capabilities. Reviewers appreciate its ability to integrate with various authentication systems, including support for modern protocols like OAuth and SAML. This functionality extends to enabling authentication for applications that may not natively support these standards, enhancing their security posture.

Customization and Flexibility

3 mentions

The F5 BIG-IP APM is recognized for its extensive customization and flexibility, a feature highlighted by 3 out of 8 re…

The F5 BIG-IP APM is recognized for its extensive customization and flexibility, a feature highlighted by 3 out of 8 reviewers. This allows organizations to tailor access policies to very specific requirements, including granular control over session and request-level access. Reviewers noted the product's ability to manage various token types, such as JWT tokens, contributing to its adaptability for diverse use cases.

Visual Policy Editor

2 mentions