APM with SAML SP and AD and RSA authentication

Question

Hi,&nbsp;
I have the folowing question.&nbsp;
Scenario:&nbsp;
Customer has a resource behind APM that they want to provide access to their (1) own users who will use AD authentication and RSA Securid
(2) They also want to provide access to partners with the APM configured to use SAML SP to the partners' own IdPs
I believe that I know how to configure (1) and (2) separately.  The question is how to configure this using the same landing page and same login page.  I asssume that the users domain (@domain) would be used to differentiate between the local AD and RSA users and the partners on the one hand and also between the partners I assume that their specific domains could be mapped to the relevant IdPs.
I am not sure how to put this together and I assume that the logon page would need three items: username, password and passcode or is there some other way to do this?&nbsp;
Any guidance would be greatly appreciated.&nbsp;

keesvandenbos · Answer

Hi,&nbsp;
You could create a separate landing URI for the partner and use the landing URI VPE branch to make the distinction between the partner and the company users.&nbsp;
Cheers,&nbsp;
Kees  &nbsp;

Forum Discussion

APM with SAML SP and AD and RSA authentication

Recent Discussions

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Doing mTLS Authentication per URL

Application Programming Interface (API) Authentication types simplified

Enable SAML Service Provider on F5 Distributed Cloud Application

iControl REST Authentication Token Management

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS