How to capture SAML attributes

Question

I am trying to set up an application that is using the F5 as a SP. Then I need to take the SAML attributes and create a cookie. I need to capture the SAML attributes so that I can make the cookie, how would I capture this information?

p_k · Answer

Try something like below in an irule &nbsp;
set user [ACCESS::session data get "session.saml.last.name.user"]&nbsp;
last.name.user might be different depending on your IdP(look in session details). &nbsp;

ilian_ivanov · Answer

You can try with that -&gt; https://support.f5.com/csp/article/K11123&nbsp;
Here is some additinal information that might help -&gt; https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-config-11-4-0/apm_config_sessionvars.html&nbsp;

ilian_ivanov_23 · Answer

You can try with that -&gt; https://support.f5.com/csp/article/K11123&nbsp;
Here is some additinal information that might help -&gt; https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-config-11-4-0/apm_config_sessionvars.html&nbsp;

Forum Discussion

How to capture SAML attributes

3 Replies

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Connection Rate Limit with log output

syslog over tcp and define management IP as source

Managing iRules configuration

Recommendation for Adv. Lab

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

Related Content

Multiple value seperator in saml Attribute

Decrypting BIG-IP Packet Captures Automatically

Decrypting BIG-IP Packet Captures without iRules

SAML attributes

decrypted tcpdump capture without using an iRule and without using tshark

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS