Forum Discussion
Greg_130338
Nimbostratus
NimbostratusSAML SP post binding to IdP
Hey all, I am currently investigating the capabilities of integrating the BigIP as an SP with an external IdP (shibboleth). I am providing a login page on the BigIP with an access policy that falls b...
Kevin_Stewart
Employee
EmployeeAre these supposed to visible in the session variables so I can access and use them to authorize different users/groups for different resources?
If the APM SP is successfully consuming the IdP's assertion, then an access session will be established for the user that will contain, among many other values, the assertion attributes. To verify, perform a successful authentication and then run a report in APM to show the session variables of this latest test. You should see a whole section of session.saml.* variables. You can then use these values to make additional decisions in your visual policy.
