Forum Discussion

Nimbostratus

Jan 26, 2016

F5 SAML IdP - SP Initiated SSO for Unauthorized User Behavior

We're using a Webtop to handle SP-Initiated and IdP-Initiated (Webtop Initiated) SAML SSO into multiple applications. Our access policy uses advanced resource assignment to assign specific SAML apps ...

BIG-IP Access Policy Manager (APM)

cloud

vpe

Michael_Ebbels

Nimbostratus

May 13, 2016

Hi Guys,

Have a look at the variable session.server.landinguri in apm.

When an SP initiated request occurs, it should be hitting

Create a logic check in APM for the SP resource and gracefully deny the user and vice vera.

Hope that helps

Cheers Mike

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

F5 SAML IdP - SP Initiated SSO for Unauthorized User Behavior

Recent Discussions

F5 as DNS over TLS Proxy

What does "EPS" in ddos threshold setting stands for?

cannot find Security -> Application Security: Headers: Cookie List

F5xC Migration

Monitor multiple services on one service

Related Content

Proxy Protocol v2 Initiator

iRules variables in BIG-IP Next: behavior change

Proxy Protocol Initiator

Behavior of outbound DNS query from LTM behavior

AI Safety: Navigating Deception, Emergent Goals, and Power-seeking Behaviors

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS