Forum Discussion

Nimbostratus

Jan 26, 2016

F5 SAML IdP - SP Initiated SSO for Unauthorized User Behavior

We're using a Webtop to handle SP-Initiated and IdP-Initiated (Webtop Initiated) SAML SSO into multiple applications. Our access policy uses advanced resource assignment to assign specific SAML apps ...

BIG-IP Access Policy Manager (APM)

cloud

vpe

Michael_Ebbels

Nimbostratus

May 12, 2016

Hi Guys,

Have a look at the variable session.server.landinguri in apm.

When an SP initiated request occurs, it should be hitting

Create a logic check in APM for the SP resource and gracefully deny the user and vice vera.

Hope that helps

Cheers Mike

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

F5 SAML IdP - SP Initiated SSO for Unauthorized User Behavior

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

F5 DNS Logs in JSON Format

APM - Portal access - Issue

How to configure ssh access by key on F5OS

ASM/AWAF declarative policy

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Related Content

Proxy Protocol v2 Initiator

F5 ASM/AWAF Preventing unauthorized users accessing admin path using iRule script

Proxy Protocol Initiator

Accelerate your AI initiatives using F5 VELOS

Behavior of masterkey on rSeries

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS