Forum Discussion

MC_273315's avatar
MC_273315
Icon for Cirrus rankCirrus
May 30, 2017

APM SAML (ACCESS::session remove)

Is it possible to immediately remove an active session upon completion of an Access Policy? We assign SSO connections via branches of one large Access Policy and have an issue when cookies are re-use...
BIG-IP Access Policy Manager (APM)
devops
iRules
security
Stanislas_Piro2's avatar
Stanislas_Piro2
Icon for Cumulonimbus rankCumulonimbus
May 30, 2017

Hi,

you can set session.max_session_timeout to 5 seconds after the policy completed:

when ACCESS_POLICY_COMPLETED {
    if {some conditions} {
        ACCESS::session data set "session.max_session_timeout" 5
    }
}