Has anyone successfully employed F5 Access for iOS VPN Client, using MaaS360 and the API Integration, recently? iOS Company Owned Device, Supervised iOS via DEP Configuration, Policy and iOS Versions are met, and F5 Access is setup for Cert Based Auth via PIV-D, and device has appropriate root certificates. 

The F5 Integration Side Device seems to be functioning properly, it's gathering information about the Devices via API, and that transaction seems to be fine. 

However, what we're seeing is fields coming from MaaS360 are not populated in the Access App (iOS) Side; such as WIFI MAC address, UDID, Serial number, etc. So the F5 is unable to match records against the API entries from M360. Within the MaaS360 iOS Policy Configuration for Device VPN, there is an option for fully supported F5 Access 2018 Configuration. There is a checkbox below for "Send Device Details," which is checked in my configuration, but it doesn't appear to be sent. 

If I attempt a custom VPN configuration via AppConfig (Apple Managed Configuration) not all of the desired Parameters in Reference #4 below, are found in Device Attribute references. Is there a AppConfig Parameter for UDID? (maybe, %udid%)

The Reference #4 below has an indication that maybe a custom VPN configuration may work, but this seems like something the checkbox should accomplish on the M360 side. I have opened a ticket with support, but if anyone has any insight or at least confirmation this works, I would be greatly appreciated. 

References:

1. Per-Application VPN Using F5 APM and IBM MaaS360

2. F5 Access Reference Guide for MDM Integration

3. F5 Access 2018 for iOS Reference

4. F5 Access 2018 for iOS Device Attribute References​​

------------------------------
Bryan Allebone
IBM Champion (Security) - 2022
------------------------------