Forum Discussion

Nimbostratus

Jun 12, 2020

Granular Access control policies

We are trying to use the Big IP system as a SAML service provider and PingFederate as a SAML Identity Provider. Is it possible to create an access policy which allows/denies user to access a particu...

BIG-IP

BIG-IP Access Policy Manager (APM)

security

Manoj_Chavali

Nimbostratus

Jun 15, 2020

Hi,

Thank you for the information. Could you please point me towards any document on how to implement the authorization based on the LDAP attributes?

youssef1

Cumulonimbus

Jun 15, 2020

Hi,

First of would you check authorization on IDP or SP? The best practice is to check authorization on SP side, the IDP will return attribute to SP then SP will manage authorization.

So you confirm that your SP is hosted on F5?

regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Granular Access control policies

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Sending an HTTP request from iRule without delaying client requests

In F5 APM, how to include multiple DNS suffix?

Issue while migrating config from 4000s to r4600

Username is not filled in EdgeClient in the Modern customization

Cert Bundle Manager

Related Content

JWT authorization with NGINX Ingress Controller

Why K8s Egress Traffic Policy Control is Critical to Security Architecture- Part 1

Announcing F5 NGINX Ingress Controller v4.0.0

Why K8s Egress Traffic Policy Control is Critical to Security Architecture - Part 2

Integrating Hashicorp Vault with Cert Manager and F5 NGINX Ingress Controller

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS