Hi beginner 😉,
- Yes. Attaching the same APM policy to two virtual servers will result in SSO. So user is logged-in to VS 1 will result in SSO to the second.
- It doesn't validate credentials, F5 is using an APM session cookie for this. Since the user has this cookie and an active session the second virtual server doesn't need valid credentials.
There are 3 options for this when you create a new policy/profile.
From the Profile Scope list, retain the default value or select another.
-
- Profile: Gives a user access only to resources that are behind the same access profile. This is the default value.
- Virtual Server: Gives a user access only to resources that are behind the same virtual server.
- Global: Gives a user access to resources behind any access profile that has global scope.