diff --git a/docs/class1/module4/images/lab2-cmlogin.png b/docs/class1/module4/images/lab2-cmlogin.png new file mode 100644 index 0000000..806c7bf Binary files /dev/null and b/docs/class1/module4/images/lab2-cmlogin.png differ diff --git a/docs/class1/module4/images/lab2-dnsresolver.png b/docs/class1/module4/images/lab2-dnsresolver.png new file mode 100644 index 0000000..fadc293 Binary files /dev/null and b/docs/class1/module4/images/lab2-dnsresolver.png differ diff --git a/docs/class1/module4/images/lab2-infrastructure.png b/docs/class1/module4/images/lab2-infrastructure.png new file mode 100644 index 0000000..a023d23 Binary files /dev/null and b/docs/class1/module4/images/lab2-infrastructure.png differ diff --git a/docs/class1/module4/images/lab2-myinstances.png b/docs/class1/module4/images/lab2-myinstances.png new file mode 100644 index 0000000..6c45385 Binary files /dev/null and b/docs/class1/module4/images/lab2-myinstances.png differ diff --git a/docs/class1/module4/images/lab2-routingforwarding.png b/docs/class1/module4/images/lab2-routingforwarding.png new file mode 100644 index 0000000..5eaa49d Binary files /dev/null and b/docs/class1/module4/images/lab2-routingforwarding.png differ diff --git a/docs/class1/module4/lab1.rst b/docs/class1/module4/lab1.rst index 1a588de..10dadc2 100644 --- a/docs/class1/module4/lab1.rst +++ b/docs/class1/module4/lab1.rst @@ -1,2 +1,40 @@ -Lab 2.1 - Create DNS Resolver +Lab 4.1 - Create DNS Resolver ############################# + +.. note:: If you already ran through the Lab 2 - SAML Azure authentication with Kerberos SSO, you can skip this section of the lab. The DNS resolver is already created. + + +1. Access **BIG-IP Next Central Manager** if you're not already logged in. + +.. image:: images/lab2-cmlogin.png + :width: 600 px + +2. Click on the Workspace icon and select Infrastructure + +.. image:: images/lab2-infrastructure.png + :width: 600 px + +3. In the My Instances dashboard, click on *big-ip-next-03.example.com* instance. + +.. image:: images/lab2-myinstances.png + :width: 600 px + +4. This will open the Instance Settings screen. On the left side, click on **Routing & Forwarding**. Click on **Default** VRF. + +.. image:: images/lab2-routingforwarding.png + :width: 600 px + +5. Enable **DNS Resolver** and add a new entry + +* Name : global_f5_internal_net_resolver +* Forward Zone : create a new zone + + * forwardZone : . <- this is a period or single dot + * nameserver : 10.1.1.6:53 + +.. image:: images/lab2-dnsresolver.png + :width: 600 px + +9. Click **Save** and **Save**, and then click **Cancel & Exit** to exit out of the Instance Setting screen. + +This ends this section of the lab, onto the next. \ No newline at end of file diff --git a/docs/class1/module4/lab2.rst b/docs/class1/module4/lab2.rst index d8097db..30a6fb4 100644 --- a/docs/class1/module4/lab2.rst +++ b/docs/class1/module4/lab2.rst @@ -1,2 +1,3 @@ -Lab 2.2 - Create an Access Security Policy +Lab 4.2 - Create an Access Security Policy ########################################## + diff --git a/docs/class1/module4/lab3.rst b/docs/class1/module4/lab3.rst index 800cb06..75d9be6 100644 --- a/docs/class1/module4/lab3.rst +++ b/docs/class1/module4/lab3.rst @@ -1,2 +1,2 @@ -Lab 2.3 - Create an Application +Lab 4.3 - Create an Application ############################### diff --git a/docs/class1/module4/lab4.rst b/docs/class1/module4/lab4.rst index 3f1e01b..911681c 100644 --- a/docs/class1/module4/lab4.rst +++ b/docs/class1/module4/lab4.rst @@ -1,2 +1,2 @@ -Lab 2.4 - Test Application +Lab 4.4 - Test Application ########################## diff --git a/docs/class1/module4/module4.rst b/docs/class1/module4/module4.rst index eda1276..f1d9088 100644 --- a/docs/class1/module4/module4.rst +++ b/docs/class1/module4/module4.rst @@ -1,8 +1,15 @@ Lab 4 - OIDC Azure authentication with Kerberos SSO (under construction) ######################################################################## -DO NOT RYN THROUGH THIS LAB +Estimate time to complete: 20 minutes. +In this lab we will explore how to setup Oauth OIDC authentication with EntraID (Azure AD) + +**Learning Objectives:** + +- Create Policy via Visual Policy Designer (VPD). +- Assign Flows and rules to the policy. +- Create Application and associate it with policy .. toctree:: :maxdepth: 1