Forum Discussion
NimbostratusAPM Session Single Domain Not Persisting
Hello,
I have an APM Profile/Policy assigned to three Virtual Servers (webtop.example.com, app.example.com, and idp.example.com). webtop.example.com is where users first go to. The policy stores information about the user based on AD queries. The user gets assigned a webtop, with a Webtop Link that points to app.example.com. app.example.com is a SAML SP that sends a SAML AuthN Request to idp.example.com.
In the single APM Profile/Policy, I have Domain Mode on Single Domain, with the Domain Cookie set to example.com and Secure for Cookie Options. I have tried either None for SSO Config or the IdP configuration that is configured for idp.example.com.
After authenticating to webtop.example.com, I see the .example.com Domain on the MRHSession Cookie. When I click the link to app.example.com, I get sent into the Access Policy again, with MRHSession set to a new value.
Am I doing something wrong here? Shouldn't the MRHSession Cookie be passed to both app.example.com and idp.example.com after authenticating to webtop.example.com?
Thanks, Ryan
youssef_100679Hi,
to achievethe function you want to deploy, you should use "Multi domain SSO":
https://devcentral.f5.com/articles/apm-cookbook-multiple-domain-authentication-part-1
it's easy to deploy and with this functionnality you have the availlibilité to authenticate other domain...
Hope it's clear, let me know if you need more details.
regards,