F5 APM Logon

Question

Hi,&nbsp;
Using F5 APM, can i deploy F5 APM only as SSO logon page ? After user have logon, user can access web app directly. This deployment is for internal user who want to access internal web app but F5 APM is positioned on DMZ. The goal is user can stil use SSO, but traffic to access internal web app not through DMZ (proxied by APM).&nbsp;
Thanks&nbsp;

boneyard · Answer

could you draw up a figure? &nbsp;
if you want the APM to do SSO against a web application but without the APM then that won't work. you do need some communication.&nbsp;

joshbecigneul · Answer

One way of having F5 present a logon page for an application, but not proxy the traffic, would be to use the F5 APM as a SAML identity provider (IdP). This would require the installation of either an agent on the application server, or modifications to the application to support operating as a SAML service provider (SP).

Forum Discussion

F5 APM Logon

2 Replies

Recent Discussions

Failed to convert character dclid=%EDclid!

ASM - Parent policy vs OWASPcompliance

Rewrite uri translation not working

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

APM OCSP Responder Issues

Related Content

Custom APM Logon page Access policy evaluation is already in progress for your current session

F5 APM - How to suppress the logon page for autenticated users for a period of time?

BIG-IP APM - Customized Logon Page

F5 Access Policy Auto submit logon page

APM LOGON PAGE