Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Using a BIG-IP to Front-End Azure

Jack_Stewart
Nimbostratus
Nimbostratus

‎22-May-2019 08:30

Hello!

 

We are implementing Azure, and I was wondering if it was possible to configure the BIG-IP such that:

 

  • User authentication goes to a URL in which we've enabled federation (i.e., SAML) authentication.
  • Intune and device management requests bypass this URL and go to the Microsoft SSO URL, and then, after SSO, the device communicates directly with Azure.

 

I've looked into the network information for both Office 365 and Intune, and there's a lot of different endpoints available. It's almost like it would be too complex to manage, but I thought I would ask.

 

Is anyone doing this?

 

Many thanks,

Jack Stewart

University of Michigan

Labels:
0 Kudos
1 REPLY 1

autopoiesis
Altostratus
Altostratus

‎03-Dec-2021 03:45

Hi Jack,

Did you ever make progress on this? We're having issues getting users registered with Intune, with on-premise Big-IP (v15) as IDP (no AD FS).

 

It looks like WS-Trust is a MUST from Azure's perspective, still not sure whether it's supported though (I'm opening an SR to ask F5, docs are hazy)...

 

Any info you could share would be welcome.

 

Cheers,

SW

0 Kudos
Copyright © 2023 Khoros, LLC