Forum Discussion
NimbostratusDoes Big-IP APM support OpenID/OAUTH2 ?
Dear all,
As part of a new project, we are currently investigating the different possibilities to federate identities across cloud (mainly Office 365) and on-premises applications. The idea is to have the reference id system in the cloud ultimately. All our on-premise applications will be behind a Reverse Proxy. I understood that Big-IP APM is able to replace an ADFS across cloud and on-premise and act as a full SAML Identity Provider. This can be an option for us but we still want to investigate the other ones.
What about using OpenID/OAUTH2. Are we able to interface Big-IP APM with an authorization server that is cloud based so that all authentication and authorization checks are handled by the Reverse Proxy itself (without any need to handle this on the applications) ? I understood that contrarily to SAML, there is no direct integration of OpenID/OAUTH2 in Big-IP. Am I right ? Is it then possible to configure some iRules to manage this ? Has someone implemented such architecture already ?
Many thanks in advance for your help and advice on this
Regards
Almer
3 Replies
- Kevin_Stewart
Employee
Today there is no direct support for OAUTH in APM, but it is reportedly coming in a future version. In the meantime, others have implemented OAUTH in iRules. Example:
https://devcentral.f5.com/wiki/iRules.OAuth2-Google-APM.ashx
antonioc74_2977Does anyone know if OpenID Connect is support in version 13.
Have looked at the release notes for mention of it.
Jason_HoffmanHow come this question was asked 2 years ago and and you (Kevin) replied 4 years ago?
where is the logic here? or the site is hacked?
