Forum Discussion
Nobby_67786
Nimbostratus
Hi John,
The best way to do this would be to setup SAML federation between your VIPs & Access Policies. Configure your primary access policy to act as an IDP and all your others to be SP's. If you've got variables you capture like (username & password) you can pass them as attributes in the SAML payload. The great thing about that solution is that your VIPs don't even need to be on the same device so if you needed to scale or distribute services your authentication architecture will already support it.
Hope this helps point you in the right direction.
- Nobby
John_T__Morgan_
Mar 30, 2015Nimbostratus
Hi Nobby,
Would I still need to do an "Allow and Redirect" or would there be a beter method than that?
-John