Forum Discussion

spalande's avatar
spalande
Icon for Nacreous rankNacreous
Jul 07, 2015

ADFS authentication -APM

For our ADFS infrastructure F5 is acting as an ADFS proxy. ADFS F5 VIP has apm policy with 2 factor authentication. So all cloud application needs multifactor authentciation. Now we have a requiremen...
BIG-IP Access Policy Manager (APM)
security
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Jul 07, 2015

Technically speaking that's no more complicated than using an HTTP URI or Host header. The client would conceivably be coming to your auth solution with the referrer header.

GET / HTTP/1.1
Host: auth.domain.com
Referer: othersite.example.com
...

You'd just need to look for this in the first HTTP request to APM. That said, most browsers will not send a Referer header in an HTTPS request, so you might need to find another way to define where this request is coming from. Maybe an initial specific URI?