client-initiated SSO issue

Question

I’ve configured client-initiated SSO forms for different web applications, but I'm encountering two issues with two different virtual servers:

1) For the first virtual server, SSO authentication works fine, but the logout link doesn’t function. The APM profile doesn’t accept the URI /names.nsf/?Logout&Form=LogoutDone as a valid logout URI. Is there any workaround for this?
2) For the second virtual server, I don’t see APM submitting the POST request to the backend server. Is it mandatory to include an action field in the backend form? In passthrough mode, the log doesn’t show the "Submit Detection" either.

injeyan_kostas · Accepted Answer

Hello mzugaghe​&nbsp;For 1. you can use an irule like thiswhen HTTP_REQUEST {
    if { [string tolower [HTTP::uri]] equals "/names.nsf/?logout&amp;form=logoutdone" } {
         HTTP::redirect https://[HTTP::host]/vdesk/hangup.php3
    }
}

Forum Discussion

client-initiated SSO issue

1 Reply

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Does F5 Rules for AWS WAF - Common Vulnerabilities & Exposures Mitigate Log4J vulnerabilities

Credentialed Scanning - F5OS - Rseries

WebSocket connection to 'wss://...' failed: Invalid frame header

f5 asm reporting aggregate

rSeries 4600 additional Core Enable

Related Content

F5 BIG-IP password is hashed during Form based Client Initiated SSO

Simplifying OIDC and SSO with the New NGINX Plus R34 OIDC Module

Enhanced Modern Applications and MicroServices SSO with NGINX

Client-Initiated Forms SSO javascript

Secure Modern Applications and MicroServices SSO with NGINX

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS