Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

F5 BIG-IP APM with SAML on simplesamlphp

kpoadips
Nimbostratus
Nimbostratus

‎24-Nov-2020 06:14 - last edited on ‎04-Jun-2023 21:10 by Fog

I have configured the F5 BIG-IP for SAML authentication. My IDP is simplesamlphp. I have configured SAML SP Provider and External IDP connector and connected it to Virtual Server. On simplesamlphp I added an application by importing xml metadata from BIG-IP. Communication works, authentication passes, but finally BIG-IP reports to me on Virtual Server: 

Access was denied by the access policy. This may be due to a failure to meet access policy requirements.

In the apm log I have the information: 

/ Common / SAML_ACCESS_POLICY: Common: ff7ec2b7: SAML Agent: / Common / SAML_ACCESS_POLICY_act_saml_auth_ag failed to parse assertion, error: Response is not encrypted

I cannot log in to F5 BIG-IP APM.

Labels:
0 Kudos
2 REPLIES 2

SanjayP
MVP
MVP

‎04-Apr-2021 00:43

Please check if SAML encryption is enabled. It would expect to send the SAML assertion to be encrypted.

0 Kudos

boneyard
MVP
MVP

‎11-Apr-2021 06:59

did the answer from SanjayP solve it for you kpoadips?

0 Kudos
Copyright © 2023 Khoros, LLC