Financial Services - Privileged User Access

Solution Overview

Many financial services organizations are grappling with the practical realities of protecting their critical IT infrastructure when the majority of their associates are working from home. Bad actors are evolving their techniques and attack vectors to exploit current situations. Regulators are still demanding a comprehensive security stack. Today, each individual application and admin interface requires user name and password for log in. F5 Privileged User Access (PUA) provides SSO though a webtop to all apps and admin interfaces, eliminating the need for individual user name and passwords. This enables the use of strong multi-factor authentication into all apps and administration interfaces. Eliminating device unique login accounts can potentially help you to meet challenging audit requirements presented by agencies such as OCC, FINRA and DFS.

Goals & Objectives

The goal of this lab is to acquaint users with how F5 APM using PUA can achieve elevated levels of security when connecting to privileged devices and services.

Hardware & Software

  • 1 x F5 BIG-IP VE (v13.0)
  • 1 x Windows Jumphost (Windows 10)
  • 1 x Linux LAMP Servers (xubuntu 14.04)
  • 1 x Cisco Cloud Services Router 1000V
  • 1 x Active Directory Server