Using APM with Windows Pre-logon feature
Hi All,
Trying to migrate a client from using Cisco AnyConnect over to a F5 and APM.
One feature the client utilises is the ability to establish the VPN connection before the user has completed their login through the Windows logon screen.
Have configured APM - and logging in through either the website or using the BIG-IP Edge Client manually all works fine. In the client download packages I have enabled 'User Logon Credentials Access Service' in the downloaded package and installed.
For testing on Windows 7 this is done by selecting Switch User first. Then at the bottom right a icon appears called Network Logon. Pressing this I get a 'APM Network Access' screen with a prompt for a username and password. Is this Username and Password supposed to be their local account or the VPN/APM account? Either way it always prompts again with a window called APM Network Access. It pre-populates the Server with the end-point, but then asks for a User name, Password and Domain.
Filling this in with domain credentials I get a popup with title 'APM Network Access' and saying 'Authenticated' - which hangs there for about 20 seconds and then a Windows error 'Logon failure: unknown user name or bad password'.
I am sure I have the credentials right, because when I enter them wrong I instead get 'Error 702: Device response received when none expected.' - which is not very user friendly.
Any ideas what I can use to try and diagnose this problem? Also, what are the two different sets of credentials it is asking for and can we get rid of one lot? Is there some clear documentation on how this is all supposed to work that I can refer to? Can see documents on configuring APM side of things, but a more 'user friendly' guide would be nice.
Thanks for any assistance. Jason