Forum Discussion

dp_119903's avatar
dp_119903
Icon for Cirrostratus rankCirrostratus
Jan 27, 2016

APM + SSO questions about server side authentication

I have a good amount of experience working with the F5 as a SAML SP using a 3rd party external IdP and then using kerberos for server side SSO.   I have a question though about other options. Sin...
BIG-IP Access Policy Manager (APM)
saml
security
SSO
Seth_Cooper's avatar
Seth_Cooper
Icon for Employee rankEmployee
Jan 27, 2016

You stated that your application servers don't have the capability of using Kerberos. Can you tell us what authentication mechanisms they have today?

 

One thought would be to have a datagroup that did a username/password mapping then you could pull from that data group to a fixed password and send it to the back end. This way the user doesn't have to type a password but the app server isn't wide open only looking for a username.

 

-Seth