For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

FI_2016_187929's avatar
FI_2016_187929
Icon for Nimbostratus rankNimbostratus
Oct 06, 2015

SSO SAML Token Question iOS Safari and App

Hi, we have multiple applications using the same IdP. From iOS device, if we authenticate to an SAML app through Safari, then try to authenticate to different app through an iOS app, we are reprompt...
BIG-IP Access Policy Manager (APM)
saml
security
SSO
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Oct 08, 2015

Generally speaking, your access token (APM MRHSession cookie) is session-based, meaning it's stored in user agent memory. It's then very likely that the iOS app doesn't have access to Safari's memory space to use the existing session cookie. The simplest option is to set the Persistent option in the IdP's access profile, which would make the session cookie file-based. I haven't tested this on an iOS platform, so not sure if that even works, but it's what you'd normally have to do in a SharePoint environment under the same conditions.