Forum Discussion

Nimbostratus

May 30, 2014

Best Practice for SAML, F5

I currently have a situation where the team as designed the following for SAML: Active/Passive If server A goes dead, server B becomes active. When server A comes back online, I now have an act...

design

security

D__Yutzy_151141

Nimbostratus

May 30, 2014

The way the F5 is configured today is it routes all SAML requests to a single server, if that server becomes unresponsive then it routes all traffic to a second server. This is what I refer to as actrive/passive.

When this event occurs, the second server becomes the primary, active server. If the first server comes back online, I now have a situation where the F5 recognizes both as active and begins to route traffic to "both" servers, it doesn't revert back to one = primary and two = passive.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Best Practice for SAML, F5

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

ASM allow specific url from outside country of geolocation ON

F5 DNS Logs in JSON Format

APM - Portal access - Issue

How to configure ssh access by key on F5OS

ASM/AWAF declarative policy

Related Content

AS3 Best Practice

Hands-On Quantum-Safe PKI: A Practical Post-Quantum Cryptography Implementation Guide

F5 Certified Practice Exams

Security Best Practices for F5 Products

Cipher Suite Practices and Pitfalls

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS