Forum Discussion

Nimbostratus

Mar 25, 2024

APM with EntraID as idP / request signed

Hi experts. I need your help to solve an issue. I'm configuring a new enviroment with BIG-IP version 15.1.8.2 Build 0.0.17 Point Release 2. I have the APM works fine with SSO using EntraID (Azure...

BIG-IP Access Policy Manager (APM)

Employee

Apr 04, 2024

From your description it sounds like you are the SP (you send MS the (signed) auth requests) and Microsoft is the IdP (they send back an auth assertion (that should always be signed)). When your BIG-IP is acting as a SAML SP, it uses the "IdP Connector" object to logically connect your local SP service to the remote IdP service. The GUI tries to use simple language to describe the purpose of the setting, "Authentication Request sent by this device to IdP", but SAML has a lot of different settings that can be confusing.

Here's a screenshot of the GUI for that one:

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

APM with EntraID as idP / request signed

Recent Discussions

Management IP F5 cant be accessed

301 redirect and waf policy log problem

Big-IP VE edition for MacBook M4 Chip

ASD

Background Tasks

Related Content

AS3 signed rpms

Zero Trust building blocks - Leverage F5 NGINX Plus Single Sign-On (SSO) and F5 XC

High Performance HMAC Cookie Signing

Logging of DNS Requests and Responses without a DNS license

Digest based Single-Sign-On

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS