F5 BIG-IP APM with SAML on simplesamlphp

Question

I have configured the F5 BIG-IP for SAML authentication. My IDP is simplesamlphp. I have configured SAML SP Provider and External IDP connector and connected it to Virtual Server. On simplesamlphp I added an application by importing xml metadata from BIG-IP. Communication works, authentication passes, but finally BIG-IP reports to me on Virtual Server:

Access was denied by the access policy. This may be due to a failure to meet access policy requirements.

In the apm log I have the information:

/ Common / SAML_ACCESS_POLICY: Common: ff7ec2b7: SAML Agent: / Common / SAML_ACCESS_POLICY_act_saml_auth_ag failed to parse assertion, error: Response is not encrypted

I cannot log in to F5 BIG-IP APM.

spalande · Answer

Please check if SAML encryption is enabled. It would expect to send the SAML assertion to be encrypted.

boneyard · Answer

did the answer from SanjayP solve it for you kpoadips?

Forum Discussion

F5 BIG-IP APM with SAML on simplesamlphp

2 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Illegal Metacharacter in Parameter Name in Json Data

Cisco TACACS+ Config on ISE LTM Pair

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

How can I get started with iCall

Related Content

Automating Certificate Management on F5 BIG-IP

Introducing the F5 AI Assistant for BIG-IP

BIG-IP security hardening and compliance checks

BIG-IP Report

F5 BIG-IP Zero Trust with BIG-IP SSL Orchestrator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS