Forum Discussion

Nimbostratus

Mar 01, 2017

F5 APM SAML SSO

Hi, I am deploying a POC with F5 APM as reverse proxy and I have to publish internal resources configure with SAML auth. I did not find any configuration how to configure it. when I tr...

BIG-IP Access Policy Manager (APM)

saml sso

security

FI_2016_187929

Nimbostratus

Mar 01, 2017

Are you trying to configure F5 APM as the Service Provider? You can configure this by Access Policy - SAML - BIG-IP as SP.

This article provides more information: https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-single-sign-on-12-0-0/32.html

Stanislas_Piro2

Cumulonimbus

Apr 14, 2017

Hi,

to remove previous session cookie, you can use this code (change the sharepoint cookie name):

when ACCESS_SESSION_STARTED {
    if { [HTTP::cookie exists sharepointcookie] } {
        ACCESS::session data set session.server.landinguri "/vdesk/cleanupCookie?url=[b64encode [ACCESS::session data get session.server.landinguri]]"
    }
}



when ACCESS_ACL_ALLOWED {
    switch -glob [string tolower [HTTP::path]] {
        "/vdesk/cleanupCookie" {
            ACCESS::respond 302 noserver Location [b64decode [URI::query [HTTP::uri] url]] "Set-Cookie" "sharepointcookie=deleted; expires=Thu, 01 Jan 1970 00:00:00 GMT;path=/;secure"
        }
    }
}

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)