Forum Discussion

jk20004_44080's avatar
jk20004_44080
Icon for Nimbostratus rankNimbostratus
May 07, 2018

saml slo redirect url

we have to integrate a external SAML SP with our F5 as SAML IdP but the SP supports only SLO via redirect and not via POST. There a many documents about SLO via POST (and the url for that) but not one about SLO via redirect. When the SP initiated the logout, I get at the following errors in the APM log

SAML SSO: Authn Request has no SAMLRequest
SAML SSO:  Error (12) extracting SAML Data from Request

I interpret this as “I cannot SLO via redirect” or “I need a parameter identifying the SP” Has anybody SLO with redirect running and can share the url and the parameter?

I know that i can manage that with a iRule, but that’s only the Emergency Solution for me

2 Replies

  • Hi,

     

    You don't need to manage this trough an irule. You have to set your extranl sp with "Single Logout Binding to redirect"

     

    • edit your saml sp connector
    • set your SLO Service Settings
    • set your Single Logout Binding to Redirect.

    Let me know if it's what's you need...

     

    Redirect