Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Does F5 BIG IP APM v17 supports entering Multiple Assertion Consumer Service URLs ?

Somesh
Nimbostratus
Nimbostratus

‎20-Oct-2022 03:38

Does F5 BIG IP APM v17 support entering Multiple Assertion Consumer Service URLs? If yes then please suggest where I can get the option. As I am not getting the option to enter multiple values here under Access > Federation > SAML Service Provider > Local SP Services.> create > Endpoint Settings.

 

Somesh_0-1666262088513.png

 

Labels:
0 Kudos
1 REPLY 1

Mikayla_Dickinson
F5 Employee
F5 Employee

‎20-Oct-2022 23:17

Hi Somesh,

ACS Indexing is not supported, however you can address this by binding multiple external IDPs to your local SP and setting a session variable after login to direct. Here is the info from the APM 17.0 

 

To bind multiple IdP connectors with this SP service, complete the configuration:

Select a connector from the SAML IdP Connectors list in the new row.

In the Matching Source field, select or type the name of a session variable.

Use a session variable only if it is populated in the policy before the SAML Auth action.

For example, select %{session.server.landinguri} or type %{session.logon.username}.

In the Matching Value field, type a value.

The value can include the asterisk (*) wild card.

For example, type *hibb* or south* .

Click the Update button.

The configuration is not saved until you click OK.

To add other IdP connectors, start by clicking Add New Row, fill the new row, and end by clicking Update.

Click OK.

APM saves the configuration. The screen closes


https://techdocs.f5.com/en-us/bigip-16-1-0/big-ip-access-policy-manager-saml-configuration/using-apm...

 

0 Kudos
Copyright © 2023 Khoros, LLC