For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

masod_211209's avatar
masod_211209
Icon for Nimbostratus rankNimbostratus
Jul 30, 2015

F5 APM as IDP using Custom Page

Hello,   Currently we are trying to use BIG IP APM as idp provider. Please suggest how can this be achieved:   Currently our site is public. There is a login form embedded in the landing page. ...
BIG-IP Access Policy Manager (APM)
design
security
masod_211209's avatar
masod_211209
Icon for Nimbostratus rankNimbostratus
Jul 30, 2015

The application is unprotected and can be accessed by anyone. If users want to get access to protected resource they will have to enter credentials first and get authenticated before seeing any other protected resource.

 

I was hoping to do following: 1) Use http form based authentication to point to our existing landing page. 2) After user credentials are verified we sent back a parameter valuee back to APM signifying user is authenticated (will have to modify our existing app to achieve this) 3) Redirect from APM to protected resource pages. 4) Users click on Partner Link 5) Redirect to SP via APM 6) SP consumes the assertion and grants access

 

Let me know if the above steps will work?

 

Thanks