I want to setup my F5 to be a SP and Azure to be an Idp
I would like the Client to be redirect to Azure and provide credentials and MFA and once complete redirected back to the F5 again. At this point I would like to use the details(e.g. Username) for that user that just logged in to Azure to then perform an AD query to check Group membership etc...
I am struggling to understand how the SAML assertion process works and how I can make it return the username of the user back so that this can be used later on in the access policy
