F5 SAML SP Azure

Hi all,

 

I want to setup my F5 to be a SP and Azure to be an Idp

 

I would like the Client to be redirect to Azure and provide credentials and MFA and once complete redirected back to the F5 again. At this point I would like to use the details(e.g. Username) for that user that just logged in to Azure to then perform an AD query to check Group membership etc...

 

I am struggling to understand how the SAML assertion process works and how I can make it return the username of the user back so that this can be used later on in the access policy

 

Anyone done this that might be able to assist?

 

Cheers