For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Malak_Samir_218's avatar
Malak_Samir_218
Icon for Altostratus rankAltostratus
Apr 03, 2019

APM SAML SLO reset

I have an APM IdP bound to an external SP. When a user logs out off the SP Application, SLO kicks in and the user is directed to https://myidp.com/saml/idp/profile/post/sls. The APM session is remove...
BIG-IP Access Policy Manager (APM)
saml
security
BGill__CISSP__C's avatar
BGill__CISSP__C
Icon for Cirrus rankCirrus
Mar 19, 2021

I have the same problem. Did you find a resolution?

  • Nikoolayy1's avatar
    Nikoolayy1
    Icon for MVP rankMVP
    Mar 21, 2021

    You may check the apm logs as there could be bugs as this one https://cdn.f5.com/product/bugtracker/ID766577.html and F5 bug tracker will help you search for them. Who initiates the SLO the IdP or SP and is the F5 device the IdP in your case?

     

     

     

    Also test with changing between POST and Redirect binding SLO URL as the different browsers and their versions may react differently to the SLO URL, so see the article https://support.f5.com/csp/article/K67310544 and if needed use HTTPWatch or Fiddler to see what HTTP SAML messages the client sees and then decode the SAML info by following https://support.f5.com/csp/article/K51854802 .