For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

masod_211209's avatar
masod_211209
Icon for Nimbostratus rankNimbostratus
Jul 30, 2015

F5 APM as IDP using Custom Page

Hello,   Currently we are trying to use BIG IP APM as idp provider. Please suggest how can this be achieved:   Currently our site is public. There is a login form embedded in the landing page. ...
BIG-IP Access Policy Manager (APM)
design
security
Michael_Koyfma1's avatar
Michael_Koyfma1
Icon for Cirrus rankCirrus
Jul 30, 2015

Are you using APM to authenticate the user before they get to the protected part of the application today? It would be ideal if you did, because because if you want to allow unauthenticated access in addition to authenticated access, the config would be a bit more complex. The good news is that no changes to the application are necessary regardless of the scenario - all work is done on the BIG-IP. I would first suggest trying to build a successful standalone configuration where BIG-IP is the IDP and partner is SP and get that part working - once that works, it would be easier to take it and integrate with the overall bigger scenario - divide and conquer approach is usually the most effective one. You can also consider employing F5 or one of F5-authorized partners services to help you with this.