Forum Discussion
F5 APM SAML SSO
Hi,
I am deploying a POC with F5 APM as reverse proxy and I have to publish internal resources configure with SAML auth.
I did not find any configuration how to configure it.
when I try to configure SAML SSO (in SSO menu, not SAML one), it create local IdP.
I do not want to create a SAML IdP but to authenticate user against existing SAML IdP.
Is it supported or have I to request customer to change internal authentication method?
Regards,
Stanislas
7 Replies
- FI_2016_187929
Nimbostratus
Are you trying to configure F5 APM as the Service Provider? You can configure this by Access Policy - SAML - BIG-IP as SP.
This article provides more information: https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-single-sign-on-12-0-0/32.html
- stan_piron
Cumulonimbus
Hi,
No, internal server (URL : ) is already configured with SAML auth with ADFS.
I now have to configure APM authentication (URL : https://myapp.comany.com, with ADFS auth too), then request a SAML token to ADFS for internal resource (URL : )
Hi Stanislas,
Did you manage to figure out if SSO SAML is working as expected?? (so APM is requesting SAML token an behave of an authenticated user for a SP)
Cheers,
Kees
- stan_piron
Cumulonimbus
Hi,
No, the customer changed the authentication method on the internal server from SAML to kerberos..
So Now users authenticate with SAML on APM and SSO is set to kerberos.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com