F5 APM /w ADFS login page

Question

Hi all,
I'm fairly new to working with APM (and ADFS/SAML in general) so I was wondering if someone could help me figure out what I'd need to accomplish the following:
APM Policy:
Start -&gt; ADFS login page (note 1) -&gt; MFA verification (note 2) -&gt; Assign SSO properties -&gt; Allow
The stumbling block I'm currently at is I don't know how to configure either ADFS, or APM, to present the ADFS authentication portal for APM. Any hints or resources that can be used to accomplish this would be greatly appreciated!
Notes:
1: The ADFS login page, not the APM login page. Our CIO specially wants the ADFS login page to be our only authentication portal.
2: We are using DUO for MFA; I'm guessing there's a way to pull the necessary information on to some sort of landing page in order to accomplish this, like in the example that DUO gives for working with APM

yann_desmarest · Answer

Hi,&nbsp;
You can use SAML2 to bind F5 APM to ADFS.&nbsp;
F5 APM act as Service Provider
ADFS act as the Identity Provider&nbsp;
Moreover, DUO Security must be connected to ADFS portal.&nbsp;
Regards&nbsp;
Yann&nbsp;

Forum Discussion

F5 APM /w ADFS login page

Recent Discussions

Should config via cli rather than gui?

Management IP F5 cant be accessed

ASD

Big-IP VE edition for MacBook M4 Chip

301 redirect and waf policy log problem

Related Content

Bypass Azure Login Page by adding a login hint in the SAML Request

ADFS Proxy Replacement on F5 BIG-IP

Customizing APM end user login page with APM Advanced Customization Templates

Big-IP and ADFS Part 5 – “Working with ADFS 3.0 and SNI”

ASM Captcha for registering page (not login page) - possible or APM modul needed?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS