Azure to APM to StoreFront

Question

Need help with setup of Azure SSO to F5 APM to Storefront. I'm trying to pass my Azure credentials to F5 APM and then once authenticated, use that SSO credential to login to storefront. Create the enterprise application in Azure already, then using APM guided configuration. F5 and Azure is connection without issues, but Citrix Store front isn't getting the session and doesn't seems to be connecting. Any help will be greatly appreciated.

jmtaylor · Answer

chenge&nbsp;
Hello Chenge,&nbsp; &nbsp;
Have you checked out this article it may provide you some of the missing information.&nbsp;&nbsp;
Configuring BIG-IP APM as OAuth client with Azure AD OAuth authorization server (f5.com)

lucas_thompson · Answer

Ordinarily you wouldn't pass login credentials (like a password) directly to an SP. Instead, you create a chain of trust so that each SP can send a SAML AuthN to the prior link in the chain, then the prior link sends the next link a SAML Assertion. This avoids the security problems with passing around credentials.
Azure (IdP) -&gt; APM (combined SP and IdP) -&gt; Storefront w/FAS (SP)
&nbsp;
&nbsp;This discussion covers federated SAML in this kind of scenario:
Citrix Federated Authentication Service Integration with APM | DevCentral
&nbsp;

Forum Discussion

Azure to APM to StoreFront

Recent Discussions

INFORM: Entrust CA will be untrusted in Chrome after Oct 31, 2024

Can BIG-IP DNS recursion only my domain?

CPU data, control and analytics plane utilization

Can import iSeries 4000 config (OS ver 1.3.x) to rSeries 5000 (f5os-a 1.5.2)?

Datagroup with address and value

Related Content

NGINXaaS for Azure: Azure Key Vault

Azure Active Directory and BIG-IP APM Integration

Transparent load balancing in Azure, Part 2

Yubikey Authentication Modes and Azure AD integration via the APM

Leverage F5 BIG-IP APM and Azure AD Conditional Access Easy button

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS