Get user's group name from Azure AD to assign resources in APM

Question

Hello Guys:&nbsp;Please, is there any way to get the name of the group or groups that a user belongs to in Azure AD (AAD)? By using APM Advanced Resource Assign, I am trying to give resources based on the group that the user belongs to in Azure AD, but I have realised that the Azure AD does not give me the memberOf parameter or something like that. I am deploying F5 APM + AAD based on OAuth for the authentication phase. &nbsp;Thanks&nbsp;Jorge

bartc88 · Answer

Any answers on how to pull Azure AD group membership into the f5 apm access policy would be great....... since there are none currently.&nbsp;

oreoluwa · Answer

Hi Jorge, Have you resolved this? I am in this sort of fix too but with SAML.Did you get this to work?

boneyard · Answer

you do this on the Azure AD side, there you say which attributes you want to send with the SAML assertion you can also chose their name.

to see the actual content you have to look at the APM session variables.

Forum Discussion

Get user's group name from Azure AD to assign resources in APM

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

DevCentral Resources

OWASP Resources for Security Education and Training

APM variable assign examples

F5 Resources for COVID-19

OWASP Tactical Access Defense Series: Unrestricted Resource Consumption

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS