Forum Discussion

Nimbostratus

Jan 18, 2017

Need help filling in the missing pieces for my SAML SP to LDAP Query scenario.

Let me start off by saying that I am pretty new to administering the F5 APM and F5 technology in general. With that being said here is what I'm trying to accomplish: I am trying to set up a new ...

BIG-IP Access Policy Manager (APM)

security

Stanislas_Piro2

Cumulonimbus

Apr 27, 2017

Hi,

In my ADFS / F5 APM configuration, I use User-Principal-Name LDAP attribute for Name ID outgoing claim.

Then, in LDAP (or AD) Query, use the following filter :

(userPrincipalName=%{session.saml.last.identity})

You can then assign

session.ad.last.attr.sAMAccountName

session.logon.last.username

and

session.logon.last.logonname

Forum Discussion

Need help filling in the missing pieces for my SAML SP to LDAP Query scenario.

Recent Discussions

What is the meaning is 52% block in WAF

Rundeck ansible F5 errors

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Trying to Fill Some Giant Shoes...

Using Distributed Cloud DNS Load Balancer with Geo-Proximity and failover scenarios

The Case of the Missing F5 AMI : F5 BIG-IP AMI Lifecycle Events

Especial Load Balancing Active-Passive Scenario (I)

Especial Load Balancing Active-Passive Scenario (II)