Forum Discussion

joyride_us's avatar
Icon for Altostratus rankAltostratus
Feb 23, 2021

APM - Creation of IdP and SP for SAML

Hi guys!


I am trying to configure IdP and SP on my BigIP. I have no idea about this.

I have answered the questions in the iApp/Application Services. I have answered all the questions but on the "Which SaaS application are you using?" I don't see my IdP as an option...just the Amazon and so on...pity!

Do you have any clue where and especially how I configure the whole thing for IdP/SA, SAML ?


thank you a million times!

9 Replies

  • Hi,


    maybe you should take one step at a time. Are you aware of the roles of IdP and SP in SAML?


    There are two parties involved in the process of SAML authentication, an identity provider (IdP) and a service provider (SP). IdP and SP mutually trust each other.


    The IdP performs the authentication (very often against some kind of User Directory like LDAP) and passes the user's identity (as well as information about the users role, authorization, an so on) in the form of a SAML authentication token, to the SP.


    The SP processes the token and gives the user access to the service, very often some kind of SaaS.


    Which role should your BIG-IP take? The role of the IdP or the SP, both?






  • Both roles are relevant for BigIP. Thank you for paying attention, Daniel.

    • Daniel_Wolf's avatar
      Icon for MVP rankMVP

      Ok, I guess you're going through Guided Config and you get stuck there, right?

      Which BIG-IP version are you on? I will try go collect a couple of links to the appropriate documentation. I think to get a better understand and to use BIG-IP as SP und IdP a step-by-step guide might be a good starting point for you.


      Meanwhile check the Youtube channels of devcentral and Matthieu Dierick, F5. There can find some videos to get you some rough idea.