Error on the login page for SSO
Configured APM as Identity Provider , following the document https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-saml-config-guide-11-3-0/3.html When i initiate the SSO from the SP application , it gets redirected to the APM but with an error. i do not see a login screen , instead this error Object not found! The requested URL was not found on this server. If you entered the URL manually please check your spelling and try again.Error 404 it gets redirected to the url : https://apm.mingledev.com/saml/idp/profile/redirectorpost/sso?SAMLRequest=fZJBS8QwEIX%2fSsm9Tdq...&RelayState=3e00dc15-dd56-... Where can i find the logs to see more information about this error.? or can anyone tell me if i am missing something here....
Need help with Client-Initiated Form SSO
Standard forms-based SSO doesn't work with a home-grown web app I am trying to get SSO working for. I've read through the manual page for APM for client-initiated forms. Following that manual I still can't get it to work. Below is the sequence for the web page on how you get to the POST of the forms. 1) GET 2) Response is a 302 to 3) The GET to results in a 302 to dynamic string here" 4) POST to dynamic string here" with forms for redirectUrl (blank value), userName, and password. Below is my current config. I can't find a way to include the redirectUrl form parameter with a blank value. I'm not certain that is why it isn't working. I think that, combined with I don't know how to set this up to capture that dynamic string and pass that through as part of the request-value, is why it isn't working. As usual any help is much appreciated. My testing indicates that including that dynamic string is necessary. forms { FormProfileName { controls { password { secure true value "%{session.sso.token.last.password}" } userName { secure true value "%{session.sso.token.last.username}" } } request-value https://www.webapp.org/abc/portal/connect/home/login/ success-match-type url success-match-value /abc/myportal/connect/home/word/* } }SSO inside the APM?
Hello all, Recently I have configured the single sign-on (both with "Basic HTTP Auth" and "Form based") for a remote webserver. This works fine to me. Now, I want to do the same, but with a HTML file that is inside the APM (hosted content). This html file runs an applet, and I want to pass the session variables (session.sso.token.last.username, session.sso.token.last.password) to the applet, so I would need to read these variables directly or "simulate" the SSO (but this is, of course, not possible inside the APM as not Basic Authentication or form submission is available). Is there any API/ajax callback functions or something similar for reading these variables? Is there any known workaround for this? The remote desktops configurable on the Big IP can configure autologon using session.logon.last.username and session.logon.last.password. Can this be somehow used? I know this is a weird case, any suggestions will be highly appreciated.