Forum Discussion

SteveD1979

Cirrostratus

May 23, 2023

Issue with SAML Auth access policy

Hey I've set up the BIG-IP as a service provider with an external IDP. I keep getting a deny with SAML Agent: /Common/authweb_dev_act_saml_auth_ag failed to parse assertion, error: $fmt. If i go in...

devops

SteveD1979

Cirrostratus

Thanks I'm using the same cert and key exported from the cert that is in the SSL profile tied to the VIP the access policy is tied to. I exported the metadata file with those settings and sent it to the IDP and they sent me their metadata file which I used to create the connector. This is the first time I've set this up so it's for me to know if it's my configuration or theirs. Now I'm also getting an issue where all of the attributes they send over in the XML file when it's unecrypted are showing up under one variable value instead of each individual one. Maybe there is an issue with 17.1?

Nikoolayy1

MVP

May 25, 2023

Better open a support case if you think that there is an issue.

Edit:

17.1 Is really new so I wouldn't be using it except for if there is a need for JWT Oauth encrypted tokens that are supported by it.

Forum Discussion

Issue with SAML Auth access policy

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

Access policy, LTM policy and iRules

Reviewing vulnerability scanner results for an Access Policy Manager (APM) protected Virtual Server

F5 BIG-IP Access Policy Manager (APM) - Idp integration - Cisco vManage

ASM Policies role based access