For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Cirrus rank

Cirrus

Dec 12, 2016

Big-ip as SAML IdP: automate metadata import

Hi,

I'm looking into using our Big-IP as SAML IdP. It all seems straight forward, however I seem to be missing a key option: the regular import of SP Metadata.

We currently use a Shibboleth IdP 3.x This IdP downloads on a regular basis the metadata of our federations. (Belnet, eduGAIN) These federations are large. There are many SP, SP change all the time. Obviously I don't want to create all the SP from the Medata by hand. Or even automate it by tmsh, this seems to be a bad idea.

Is there any way to do this?

I've seen the option Idp Automation, unfortunately it seems to be only for when you use the Big-IP as SAML SP.

Thanks Vincent

BIG-IP Access Policy Manager (APM)

2 Replies

Juraj
Cirrus
Aug 01, 2017
I have the same requirement. Any solution available?
willem_janssens
Nimbostratus
Jun 27, 2017
Does anyone have an answer to this?

Security Best Practices for F5 Products

Technical Articles

F5 AppWorld 2026 Registration - early bird pricing.

DevCentral News

Kostas Injeyan - October 2025 Featured Member

DevCentral News

featured member

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5