BIG-IP APM as a SAML 2.0 Identity Provider for Microsoft Office 365 - SSO Config

Question

Hello Community,&nbsp;
i have successfully Configured BIG-IP APM as a SAML 2.0 Identity Provider for Microsoft Office 365 with the iApp Template .&nbsp;
I can login successfully from internal and external to Office 365. From external and internal I will be redirected to F5 logon Page. Than i have to type in my AD Credentials and i am logged into Office 365. &nbsp;
But my expectation is, when i come from internal that i dont want to type in my Domain Username/Password to authenticate, because i am already authenticated with my active directory.&nbsp;
So what do i need to do in this case to get SSO to my configuration?&nbsp;
Best regards
Heiko&nbsp;

kunjan · Answer

May be you can try Kerberos Auth if the request comes from internal.&nbsp;

h_k__307264 · Answer

Is there a how to for kerberos auth in this case?&nbsp;

kunjan · Answer

https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-single-sign-on-11-6-0/9.html&nbsp;

Forum Discussion

BIG-IP APM as a SAML 2.0 Identity Provider for Microsoft Office 365 - SSO Config

3 Replies

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Same LTM Monitor applied to different Pools with Common Nodes

irule execution error

F5 AWAF/ASM learning only from Trusted traffic?

OWA File Upload URIs for WAF Bypass

Curl 7.10.5 < 8.12.0 Integer Overflow (CVE-2025-0725)

Related Content

F5 APM as Service Provider (SP) and Microsoft AzureAD as Identity Provider (IDP)

Identity-centric F5 ADSP Integration Walkthrough

Identity-Aware decisions with JA4+

Microsoft Powershell with iControl

Identity-Aware Proxy in the Public Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS