client-initiated SSO issue

Question

I’ve configured client-initiated SSO forms for different web applications, but I'm encountering two issues with two different virtual servers:

1) For the first virtual server, SSO authentication works fine, but the logout link doesn’t function. The APM profile doesn’t accept the URI /names.nsf/?Logout&Form=LogoutDone as a valid logout URI. Is there any workaround for this?
2) For the second virtual server, I don’t see APM submitting the POST request to the backend server. Is it mandatory to include an action field in the backend form? In passthrough mode, the log doesn’t show the "Submit Detection" either.

injeyan_kostas · Accepted Answer

Hello mzugaghe​&nbsp;For 1. you can use an irule like thiswhen HTTP_REQUEST {
    if { [string tolower [HTTP::uri]] equals "/names.nsf/?logout&amp;form=logoutdone" } {
         HTTP::redirect https://[HTTP::host]/vdesk/hangup.php3
    }
}

Forum Discussion

client-initiated SSO issue

1 Reply

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Round-robin method not load balanced

F5 AI Roadmap

F5 object groups in AFM

F5 BGP Peering in Active /Standby Cluster

F5 rSeries || Upgrade tenant

Related Content

F5 BIG-IP password is hashed during Form based Client Initiated SSO

Simplifying OIDC and SSO with the New NGINX Plus R34 OIDC Module

Enhanced Modern Applications and MicroServices SSO with NGINX

Client-Initiated Forms SSO javascript

Secure Modern Applications and MicroServices SSO with NGINX

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS