F5 BIG-IP Access Policy Manager (APM) Reviews & Insights

Score8.9 out of 10

23 Reviews and Ratings

Overview

Synthesised from 8 reviews | Last Published May 27, 2026

F5 BIG-IP Access Policy Manager (APM) is deployed by organizations primarily to secure access to applications, particularly those exposed to the internet, and to enable secure remote work environments, including virtual desktop infrastructure. In TrustRadius reviews, it is frequently highlighted for its robust policy management, often facilitated by its Visual Policy Editor, and its strong support for diverse authentication methods, including MFA, SAML, and OIDC, allowing integration with various identity providers for seamless access.

Reviewers consistently report that APM serves as an effective central solution for Multi-Factor Authentication and Single Sign-On, contributing positively to security posture and user experience. However, some reviewers note challenges with the user interface and configuration management, particularly for replicating settings and reusing policy objects. Advanced configurations for OAuth and API protection are also cited as areas needing refinement. Despite these points, the overall sentiment indicates APM is a powerful and manageable solution for access control.

Pros

Robust policy management via Visual Policy Editor (VPE)
Strong support for diverse authentication methods (MFA, PKI, RSA, LDAP, SAML, OIDC, OAuth)
Seamless integration with various identity providers
High degree of customization and granular access control
Effective central solution for Multi-Factor Authentication (MFA) and Single Sign-On (SSO)

Cons

Challenges with user interface and configuration management
Difficulties in replicating configurations and reusing policy objects
Advanced configuration for OAuth and API protection could be more robust
Specific security feature concerns, such as JWT token processing
Lack of integrated zero-trust VPN for outbound connection scrutiny

View All Reviews

F5 BIG-IP Access Policy Manager (APM) Reviews

20 Reviews

Con Gusto uso F5 (I gladly use F5)

Rating: 10 out of 10

Incentivized

June 15, 2025

Use Cases and Deployment Scope

Para permitir el acceso de forma segura a las aplicaciones. No hemos tenido mayor problemas con el equipo o la aplicación.

To allow secure access to applications. We haven't had any major issues with the equipment or the application.

Pros

Políticas de acceso
Access Policies
Balanceo
Balancing
Certificados
Certificates
Gestión de nodos de granja
Farm node management

Cons

IA para ayuda de configuración de granjas
AI for farm setup help
IA para notigicacion de vencimiento de certigicados
AI for certificate expiration notification

Likelihood to Recommend

Lo utilizamos normalmente para granjas de servidores Web, granja de RDS, granja de webservices.

We normally use it for Web server farms, RDS farm, webservices farm

Damian Muñoz Levingston

Technological Infrastructure Coordinator in Information Technology at Copa Airlines (11-50 employees)

Vetted Review

15 years of experience

F5 BIG-IP Access Policy Manager is boss

Rating: 10 out of 10

Incentivized

June 11, 2025

Use Cases and Deployment Scope

F5 BIG-IP Access Policy Manager is our remote access VPN tool, to access internal horizon VDIs

Pros

Policy Management
Federation
SAML Authentication
Radius Authentication
Webtops

Cons

TMOSH OS
Policy editor
SAML Integration

Likelihood to Recommend

Easy to integrate and troubleshoot problems, which are very rare

Jacob Kedari

Senior Network Engineer in Engineering at Bank Of America (1001-5000 employees)

Vetted Review

17 years of experience

F5 BIG-IP Access Policy Manager for COTS applications protection

Rating: 8 out of 10

Incentivized

February 28, 2025

Use Cases and Deployment Scope

Protecting applications before exposing them to the Internet. Often COTS applications.

Pros

Using OAuth with a COTS app that does not support it.
Integrated with different authentication systems.

Cons

JWT tokens process DIES.
UI is cumbersome.
Replicating configuration to another F5 cluster is time consuming.

Likelihood to Recommend

Works well for protecting COTS applications using Corporate OAuth solution. Configuration is time consuming. Setting up Auth / LDAP / Irule events is difficult. F5 BIG-IP Access Policy Manager does not include easy native support for different permissions on different paths in the application. Login and error pages are difficult to customize.

Tim Riker

Guru in Engineering at The Church of Jesus Christ of Latter-day Saints (5001-10,000 employees)

Vetted Review

7 years of experience

View profile

F5 BIG-IP Access Policy Manager The one shop for Identity Management

Rating: 8 out of 10

Incentivized

February 28, 2025

Use Cases and Deployment Scope

We use it to serve as a Service Provider for OKTA.

Pros

Manage of JWT tokens
Identity Manger
Per Session and Per Request access
The Visual Policy Editor is awesome

Cons

API protect must improve, we are currently having issues with the automatic scheduler for syn with a service Provider.
Training material should improve for API protection.

Likelihood to Recommend

Anything that is related to Identity Management.

Verified User

Engineer in Information Technology (5001-10,000 employees)

Vetted Review

19 years of experience

My review

Rating: 9 out of 10

Incentivized

February 28, 2025

Use Cases and Deployment Scope

We have like 40 F5 BIG-IP Access Policy Manager modules devices in our company and we are searching for the next remote access generation like ZTNA. Unfortunately, F5 is not ready for ZTNA tech, and we have to proceed with other vendors... we like the F5 BIG-IP Access Policy Manager a lot, and it is very useful, but there is no innovation from you guys on it.

Pros

Flexibility
Easy to configure
Stability

Cons

I think you should go to ZTNA on cloud for remote access users.

Likelihood to Recommend

Remote access for organizations. SAML authentication.

Oron Yosef

Network and Security engineer in Corporate at Amdocs (10,001+ employees)

Vetted Review

9 years of experience

F5 BIG-IP Access Policy Manager is great

Rating: 10 out of 10

Incentivized

February 28, 2025

Use Cases and Deployment Scope

I designed a very custom F5 VPN using F5 BIG-IP Access Policy Manager right before COVID. It allowed our company to stay connected and easily transition most of our IT workforce to work from home in a secure manner, while still giving proper access to our users. It remains one of the best ways for our engineers to connect, and other VPN solutions can't provide the same features that we need in a simple way.

Pros

Simplicity in configuration
Ease of modifications to workflow (VPE)
Visibility into users connecting

Cons

Zero trust VPN, so that all connections outbound to external sources are examined
A better way to view/showcase the Webpage design and layout within Big-IP for F5 BIG-IP Access Policy Manager

Likelihood to Recommend

I've worked with F5 BIG-IP Access Policy Manager for nearly a decade to manage and configure our VPN, and it fulfills most all of our needs.

Verified User

Engineer in Engineering (5001-10,000 employees)

Vetted Review

12 years of experience

F5 BIG-IP Access Policy Manager: Solving the DoD MFA Requirements

Rating: 10 out of 10

Incentivized

February 26, 2025

Use Cases and Deployment Scope

We utilize this mainly to meet MFA requirements. Displaying DoD Access Warning banners, utilize the F5 BIG-IP Access Policy Manager ability to work with PKI certs, RSA, and authenticate with LDAP to authenticate the user prior to load balancing them.

Pros

VPE editor makes for a clean thought out approach to building the policy.
Fairly straight forward with where to set up configuration items and reference them in policies.
I enjoy how well it communicates with the other modules.

Cons

There's some more advanced configurations within OAuth that I think could be fleshed out and easier to approach.
There's a lot of things in F5 BIG-IP Access Policy Manager policies that I find myself recreating every policy. An easier way to copy objects from one to policy to another.

Likelihood to Recommend

F5 BIG-IP Access Policy Manager is great to use specifically in the SAML and SSO space. Utilizing WebTop to make a SSO portal for all our SAML resources the F5 serves as an IdP for is quite valuable in our environment.

Brandon Finley

F5 Engineer in Engineering at GDIT (10,001+ employees)

Vetted Review

7 years of experience

F5 BIG-IP Access Policy Manager is great

Rating: 9 out of 10

Incentivized

February 26, 2025

Use Cases and Deployment Scope

SSO with saml idp for our 15000 students and 2000 faculty and staff across multiple virtual servers. We also use the oidc provider for jet. Solve the problem of seamless single sign on across multiple applications third party and in-house developed. Also helps having a centralized place for session management and load balancing.

Pros

Saml idp
Insanely customizable
Oauth web tokens

Cons

User interface
Needs responsive design
MFA implementation is clunky

Likelihood to Recommend

Big IP access policy manager is well suited for single sign-on with an active directory or radius backend. F5 BIG-IP Access Policy Manager also let me or I was able to build a bridge between Samuel and Olaf Jason web tokens from a third party provider. I created the Olaf client objects and parse a valid token into a Samuel session using the global policy profile type.

Verified User

Team Lead in Information Technology (501-1000 employees)

Vetted Review

7 years of experience

F5 BIG-IP Access Policy Manager (APM) review

Rating: 8 out of 10

Incentivized

May 13, 2024

Use Cases and Deployment Scope

we use it provide 2fa for access to websites. this keeps public access unaccessible unless authenticated and mfa. the websites are ssl offloaded on the big ip ltm also for une.ncrypted traffic to be inspected on our firewalls for threat prevention