F5 APM SAML for Office 365 not working for Office Apps

Question

Hello&nbsp;
Need some help!&nbsp;
I have managed to follow the implementation of using the F5 as SAML Idp for O365 instead of ADFS. It works perfectly for logging in online but falls over when we try and launch our Office Apps. When launching Office 2016 it asks to login to your O365 account which then sends a SAML request to APM it then seems to prompt a Windows Security login from the Idp address like a 401 challenge. If you then put your details in again it goes through and looks as though you have logged in but doesn't seem like the session is valid as it complains about not having a shared activation license.&nbsp;
Previously with ADFS Office wouldn't even prompt for a login it would presumably use Kerberos\NTLM, we'd like the same with this.&nbsp;
Any help appreciated&nbsp;
Regards&nbsp;
Stuart&nbsp;

stukirby · Answer

*RESOLVED&nbsp;
https://devcentral.f5.com/questions/o365-sso-47961&nbsp;
A clue at the bottom of this entry lead me to the fix. Had to disable Request Based Auth in the Kerberos Auth section of our APM Policy&nbsp;

Forum Discussion

F5 APM SAML for Office 365 not working for Office Apps

Recent Discussions

Service discovery is not happening in AS3

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

FTP PASV mode to Extended Passive mode

Oracle JDBC SSL Termination failing on F5

APM for banner and cert

Related Content

SSL VPN Split Tunneling and Office 365

SSL VPN Tunnel and Office 365

Microsoft Office 365 IP intelligence

Office 365 Logon Enhancement – Username Capture

Microsoft Office 365 IP Intelligence - V0.2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS